[asterisk-users] Softphone that supports central provisioning?

[James FitzGibbon]

On 4/25/07, Mike Lynchfield <theclubvoip at gmail.com> wrote:
>
> may i add , eyebeams confnig file is xml and could be generated , BUT, the
> password is hashed in some way.. any idea on that ? its a pretty long hash


Two options:

- type in the passwords manually, shut down eyeBeam, and then cut/paste the
hash into your provisioning system (suggested earlier in this thread)

- say "screw it" and put the password in the XML in the clear and change the
attribute on the "encrypted" attribute from "true" to "false".  That just
pushes the security concerns to the provisioning system and the workstation
filesystem, but you have much more flexibility in how you tackle that
problem than you get with the softphone itself.  Server side isn't really
any worse than most desk phones that need a config file with the password in
the clear on a TFTP server (i.e. Grandstream).  Client side you have to have
proper user-only creds on the Documents and Settings folder for each user
and have some way to ensure that your users don't give access to the
filesystem as them to someone else (i.e. forgetting to lock the screen).
But that's a PEBKAC[1] issue best addressed through the administration of a
Big Foam Cluebat(tm).

[1] Problem exists between keyboard and chair

-- 
j.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.digium.com/pipermail/asterisk-users/attachments/20070425/21888be6/attachment.htm