asterisk pbx daemon user rights to //etc/asterisk vs. root
Posted on 2009-07-02
I recently installed Astersik 188.8.131.52 as a second asterisk server, on Ubuntu 9.0.4. My primary is running 184.108.40.206 running on Ubuntu 8.10 .. I noticed that on 220.127.116.11, //etc/asterisk is owned by the user "Asterisk - pbx daemon" ... And on 18.104.22.168, that directory is owned by root.
I would assume that having Asterisk being the owner would hold less security risks, because if the box were compromised through asterisk, then they would not be getting the root information.... But what password is the "Asterisk" user using? Is this in fact a better and more secure setup? Does anyone know if this is something new in the 22.214.171.124 release?