Comments on: Securing Your Asterisk@Home PBX: Here’s How

By: Ersalan

Ersalan — Fri, 13 Feb 2009 05:23:16 +0000

I was actually googling around for password encryption in voicemail.conf. Can you address that issue as well? I’m really stumped about how passwords can be stored in an encrypted form in voicemail.conf.

[WM: The short answer is YOU CAN’T and there are lots of other Asterisk passwords floating around your machine that aren’t encrypted either. Bottom Line: Make darn sure you have a very secure root password and don’t add any other user accounts to the machine.]

By: James Gutting

James Gutting — Sat, 20 Oct 2007 17:00:34 +0000

Help! I have the Marriage Made in Heaven with Sprint PCS working just great. The only problem is that I can’t use my stanaphone number and direct other (non-cell) to an extension. I’m sure I have to modify the from-sip-external context as the only thing in there is to route calls to the custom-disa. What can I do?

By: Bill Greenberg

Bill Greenberg — Fri, 10 Feb 2006 15:19:55 +0000

Yep, I think you’re right. I managed to somehow fix the problem last night by using these directions: http://dev.mysql.com/doc/refman/5.0/en/resetting-permissions.html.

I went back in following your directions again and noticed that the entry I SHOULD have changed was the third line (asterisk1.local), not the second (the first and second are both localhost, with users root and asteriskuser respectively). I’m nervous about touching anything in there at this point though! Also, both asterisk1.local and localhost (next line) show blank User now, and all privileges set to N. Is that how it is supposed to be?

Also, I don’t know if this is related (not sure when it started either) but I’m also still seeing the following:
== Parsing ‘/etc/asterisk/manager.conf’: Found
== Parsing ‘/etc/asterisk/manager_custom.conf’: Found
== Connect attempt from ‘127.0.0.1’ unable to authenticate

Thanks again for all your great articles – this has been a huge help in getting me going. I never would have attempted without your guide!

By: Bill Greenberg

Bill Greenberg — Fri, 10 Feb 2006 01:25:07 +0000

I secured the mySQL database as you suggested above, but now AMP fails with: [nativecode=Access denied for user ‘asteriskuser’@’localhost’ (using password: YES)] ** mysql://asteriskuser:amp109@localhost/asterisk
I really don’t know enough about mySQL. Is there a way to recover this?

[WM: Doesn’t sound like you modified the password for the correct record. There is no asteriskuser record for asterisk1.local, and that’s what’s giving an error in what you quoted above. The correct record was user root for asterisk1.local, and only if the password field had been blank. Try to access PhpMyAdmin with a web browser directly using http://YourIPaddress/maint/phpMyAdmin/. If you can get in, goto the mysql database, the user table, browse and (carefully) edit the localhost/asteriskuser record and see what’s entered as the password. The password should be 574b6f1662368572 at least for AAH 1.5 and AAH 2.5 (and probably the versions in between).]