AMI security

Hi, our asterisk box will be on a public network. We use the AMI interface on the box itself
via a PHP script. We want to restrict ALL access from outside but still allow PHP scripts on the box access.
Is this safe enough?


Just wondering if we set the bindaddr to on our asterisk box which has a public IP . Is this safe enough? We will only be using the AMI within the ‘box’.

secret = secret
read = system,call,log,verbose,command,agent,user
write = system,call,log,verbose,command,agent,user

should do it