Any and all non-support discussions
Moderators: gerski, enjay, williamconley, Op3r, Staydog, gardo, mflorell, MJCoate, mcargile, Kumba, Michael_N
by raloheni » Wed Jun 09, 2021 7:37 am
Hi
today i noticed someone try to login as VDCL or VDAD to agent interface and admin.
though these users are Inactive , but someone trying with defualt password of donotedit.
I need to know, whether we can change the default password "donotedit" to something complex.
if i change is there any negative impact , or do i need to update same password in any conf file?
i think deleting these users will impact in report for drop or no agent calls//
-
raloheni
-
- Posts: 138
- Joined: Sun Apr 25, 2010 4:23 pm
by carpenox » Wed Jun 09, 2021 7:58 am
as long as they are inactive, you have nothing to worry about, however, if you used IP whitelist only, you would not have anyh issues, please see my blog post for securing vicidial correctly
Alma Linux 9.3 | SVN Version: 3822 | DB Schema Version: 1711 | Asterisk 18.18.1
www.dialer.one -:- 1-833-DIALER-1 -:- https://linktr.ee/CyburDial -:- WhatsApp: +19549477572 -:- Skype: live:carpenox_3 | Discord: https://discord.gg/DVktk6smbh
-
carpenox
-
- Posts: 2266
- Joined: Wed Apr 08, 2020 2:02 am
- Location: St Petersburg, FL
-
by raloheni » Wed Jun 09, 2021 8:26 am
until they are inactive no problem..
but worst case, some of my admin activate those users(by mistake )?
any negative impact changing there passwords ie:donotedit .
while surfing google, i found some CVes related to this CVE-2013-7382
-
raloheni
-
- Posts: 138
- Joined: Sun Apr 25, 2010 4:23 pm
by mflorell » Wed Jun 09, 2021 8:29 am
There is no issue with changing those passwords if you want to.
The specific CVE you mentioned is from 2013 and was fixed in the VICIdial code back in 2013, days after it was posted.
-
mflorell
- Site Admin
-
- Posts: 18342
- Joined: Wed Jun 07, 2006 2:45 pm
- Location: Florida
-
by raloheni » Wed Jun 09, 2021 8:37 am
thanks @ mflorell @carpenox
-
raloheni
-
- Posts: 138
- Joined: Sun Apr 25, 2010 4:23 pm
Return to General Discussion
Who is online
Users browsing this forum: Bing [Bot], Google [Bot] and 53 guests