Search icon CANCEL
Subscription
0
Cart icon
Cart
Close icon
You have no products in your basket yet
Save more on your purchases!
Savings automatically calculated. No voucher code required
Arrow left icon
All Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Newsletters
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Mastering FreeSWITCH

You're reading from  Mastering FreeSWITCH

Product type Book
Published in Jul 2016
Publisher Packt
ISBN-13 9781784398880
Pages 300 pages
Edition 1st Edition
Languages
Concepts
Authors (8):
Russell Treleaven Russell Treleaven
Profile icon Russell Treleaven
Seven Du Seven Du
Profile icon Seven Du
Darren Schreiber Darren Schreiber
Profile icon Darren Schreiber
Ken Rice Ken Rice
Profile icon Ken Rice
Mike Jerris Mike Jerris
Profile icon Mike Jerris
Kalyani Kulkarni Kalyani Kulkarni
Profile icon Kalyani Kulkarni
Florent Krieg Florent Krieg
Profile icon Florent Krieg
Charles Bujold Charles Bujold
Profile icon Charles Bujold
View More author details
Toc

Table of Contents (21) Chapters close

Mastering FreeSWITCH
Credits
About the Authors
About the Reviewers
Contributors
www.PacktPub.com
Preface
1. Typical Voice Uses for FreeSWITCH 2. Deploying FreeSWITCH 3. ITSP and Voice Codecs Optimization 4. VoIP Security 5. Audio File and Streaming Formats, Music on Hold, Recording Calls 6. PSTN and TDM 7. WebRTC and Mod_Verto 8. Audio and Video Conferencing 9. Faxing and T38 10. Advanced IVR with Lua 11. Write Your FreeSWITCH Module in C 12. Tracing and Debugging VoIP 13. Homer, Monitoring and Troubleshooting Your Communication Platform Index

Dropping root privileges (file permissions)


The more direct way to run FreeSWITCH is to run it as "root". Being root, the all-powerful user, the Overlord of the server, a program running as root has no limits whatsoever: No limits on how much memory it can allocate, which network port it can listen to and send from, how many files it can open, which priority and nice level it can escalate, which file and directories it can read and write.

While obviously very convenient for a casual test installation (no integration problems: FreeSWITCH simply owns the machine and all its resources), many users refrain from it.

To limit the reach and damage that a FreeSWITCH process can do after going awry because of a bug (or a malicious exploitation of a bug), you had better run FreeSWITCH as a user with the minimum possible privileges. A "system" kind of user is the most logical choice: No password, no way to login, no affiliation to groups but to "daemon".

This is how it is already implemented by ready...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $15.99/month. Cancel anytime