You must read the security document

YOU MUST READ THE SECURITY DOCUMENT

Does anyone know what this message, displayed at the end of make install, refers to ?
It has been in the Makefile since at least 2005.

read: README-SERIOUSLY.bestpractices.txt in the base directory of the sources. quite some valuable info there. Also read the README file (no kidding…) that states some pointers to security info

This is not what the digium wiki says:

wiki.asterisk.org/wiki/display/ … g+Asterisk

[quote]
read: README-SERIOUSLY.bestpractices.txt in the base directory of the sources. quite some valuable info there[/quote]

Yeah, the doc contains references to blogs.digium.com/2009/03/28/sip-security/ and also suggests using type= friend for your phones. I think I will pass :smiley:

And how do you propose asterisk users should define a SIP phone account in Asterisk? A definition in sip.conf would come in really handy :wink:

They should use type=peer. It would not allow calls without registration. I am still waiting for someone to come with an example where type=friend would be necessary -
forums.digium.com/viewtopic.php?t=78679