vicidial.org

[rajal]

if i am using hosted server i haven't done this yet , but i need to know for security purposes what should i do which default passwords i need to change what setting i need to do , changing default passwords is enough or need to do something else
well i am going to use vicidial 2.12 using the vicibox 6

[mflorell]

Just make sure you change any passwords on any default Vicidial Users. The other system and asterisk passwords should be fine as defaults as long as you don't allow outside access to those ports(3306, 4569, 5038) through your firewall.

[williamconley]

Better yet: Set your iptables firewall up with ip whitelisting. ONLY allow "known good" IPs to access your system. Then the likelihood of an attack on any port (listed or not) becomes directly related to the people who you've allowed into your system. No hacker in your whitelist = no likelihood of attack.

We also have the Dynamic Good Guys firewall add-on. It includes instructions for whitelisting a Vicibox install as well as the DGG add-on for "easy addition of good IPs": http://www.viciwiki.com/index.php/DGG

Specifically designed for Vicibox, to keep Vicidial users out of harms way. We published it at this location in 2013.