User Portal Security Issue Question

Discussion in 'General' started by amartin, Jun 19, 2009.

  1. amartin

    Joined:
    Sep 11, 2008
    Messages:
    37
    Likes Received:
    0
    We are worried about the possibility of a brute force attack on the user portal with FREEPBX. Mostly because it uses the extension number and password. Both of which are usually numbers. Is there a way to make it authenticate using a more traditional user name and password. That or can tweak the system to require users log into freepbx before accessing the User Portal?
     
  2. jammerz

    Joined:
    Sep 7, 2009
    Messages:
    75
    Likes Received:
    0
    Far as I know your extension password are currently only limited to numbers with a IAX2 virtual fax extension nothing else and I know that may be a new issue that's come up lately with freepbx 2.6.0 Beta 2 mentioned in forum as now requiring a more secure password.

    I do use more secure SIP passwords for our users and anyone should, using upper and lower case letter, mixed with numbers and even symbols and works fine.

    jf
     

Share This Page