I have installed incredible pbx ubunutu 14 and everything works fine.
I only see the following problem.
When i go to myip/maint
I see:
parent directory
myipconfigedit
phpMyAdmin
sysinfo
I can than click phpmyadmin and this goes to: http://myip/maint/phpMyAdmin/
and I can see all setting there.
No need to login I can do this from any computer that uses an ip on the whitelist and has full access thru firewall.
To me this seem unwanted behavior ?
Maybe I installed everything wrong or how can this be fixed.
Now any user in the office can make changes without being logged in.
Also I am using traveling man port knocking and this works fine.
Normally when whitelisting ip's one can specify what services the ip can see, sip iax or also webmin and loging to pbx.
When using traveling man I get access to all services including web access.
This seems a problem if I look at being able to access myip/maint and see all setting without being logged in.
Would it be an option to created 2 port knocking setting.
1 that regular users can use to register their softphone thru sip/iax
another one that will give a admin access to everything from that ip
I only see the following problem.
When i go to myip/maint
I see:
parent directory
myipconfigedit
phpMyAdmin
sysinfo
I can than click phpmyadmin and this goes to: http://myip/maint/phpMyAdmin/
and I can see all setting there.
No need to login I can do this from any computer that uses an ip on the whitelist and has full access thru firewall.
To me this seem unwanted behavior ?
Maybe I installed everything wrong or how can this be fixed.
Now any user in the office can make changes without being logged in.
Also I am using traveling man port knocking and this works fine.
Normally when whitelisting ip's one can specify what services the ip can see, sip iax or also webmin and loging to pbx.
When using traveling man I get access to all services including web access.
This seems a problem if I look at being able to access myip/maint and see all setting without being logged in.
Would it be an option to created 2 port knocking setting.
1 that regular users can use to register their softphone thru sip/iax
another one that will give a admin access to everything from that ip