mabbott Posted January 26, 2009 Report Share Posted January 26, 2009 If you enter invalid web login credentials multiple times, the pbx service crashes. I have had this happen from anywhere between 3 and 12 failed login attempts with both Windows and OSX using version 3.1.2.3120. Quote Link to comment Share on other sites More sharing options...
pbxuser911 Posted January 26, 2009 Report Share Posted January 26, 2009 I’m glad we are not the only one our system keep crashing almost every day due to that problem a new release was given to us by the programmers, which that actually caused our system to lose all the configuration files so unless they come out with a newer release then 3.2 i wouldn’t suggest updating it on the other note the only way to fix this, I’m thinking is to do the following disable the login page to come up when entering the IP address of the server, and only allow it for one IP address, which will be the main office that provisions the phones and creates the domains etc this way no subscriber has access to it. anyone that can come up with a fix, please advise BTW what OS are you running? at first we were told it keeps crashing because we are using Fedora, but now even with FreeBSD it also keep crashing if you log in with the invalid credentials (which customers keep trying since they forget their password,) wouldn’t it be nice to have a "forgot my password" tool? and if we do have it, allow us to Block web log in per extension, maybe one company doesn’t want their employee logging on to the web portal to change his email address etc.... and if we have a forgot password, he will get his password which isn’t good, so having an option if disabling web log in per extension would be awesome Quote Link to comment Share on other sites More sharing options...
mabbott Posted January 26, 2009 Author Report Share Posted January 26, 2009 BTW what OS are you running? Windows 2003 Server and OSX 10.5.6. Quote Link to comment Share on other sites More sharing options...
Vodia PBX Posted January 27, 2009 Report Share Posted January 27, 2009 Windows 2003 Server and OSX 10.5.6. We'll soon come out with a version 3.2, which does fix the problem. Quote Link to comment Share on other sites More sharing options...
pbxuser911 Posted January 27, 2009 Report Share Posted January 27, 2009 for now we have installed IPTABLES on the server and we block out all IP except our office, so we wont have a problem with customers tryign to log in with a wrong user name or password match Quote Link to comment Share on other sites More sharing options...
Vodia PBX Posted January 27, 2009 Report Share Posted January 27, 2009 for now we have installed IPTABLES on the server and we block out all IP except our office, so we wont have a problem with customers tryign to log in with a wrong user name or password match You can also bind the http server only to your private IP address. In the port settings, put something like "192.168.1.2:80" and then it will bind only to that port... A new version will be available today. Quote Link to comment Share on other sites More sharing options...
pbxuser911 Posted January 27, 2009 Report Share Posted January 27, 2009 will it have a forgot my password tool? and also be able to set per extension if it can have access at all? if not the forgot my password wont work so lets say company 1 doesnt want extension 111 to have access, but if it does a forgot password, thenit will get the password, which isnt good so for extension 111 have the option of not checking on access to web portal Quote Link to comment Share on other sites More sharing options...
Vodia PBX Posted January 27, 2009 Report Share Posted January 27, 2009 will it have a forgot my password tool? and also be able to set per extension if it can have access at all? if not the forgot my password wont workso lets say company 1 doesnt want extension 111 to have access, but if it does a forgot password, thenit will get the password, which isnt good so for extension 111 have the option of not checking on access to web portal No, this is just about the HTTP/HTTPS socket. You can limit the access by choosing password that the end user does not know. Ouch, don't do that on 3.1.2! But it will work on 3.2. Quote Link to comment Share on other sites More sharing options...
pbxuser911 Posted January 27, 2009 Report Share Posted January 27, 2009 just tought having a forgot password might be something nice to have included? FYI ive seen another version that i tried doign the same crash, but it didnt work guess somethign must of changed between this and that versions Quote Link to comment Share on other sites More sharing options...
Vodia PBX Posted January 27, 2009 Report Share Posted January 27, 2009 just tought having a forgot password might be something nice to have included? You mean something like "I forgot my password, send me an email"? In this case, the user has to contact the admin who can change the password. Quote Link to comment Share on other sites More sharing options...
pbxuser911 Posted January 27, 2009 Report Share Posted January 27, 2009 exactly, id like to see a "i am stupid and forgot my password so please email it to me" but like i said, it should be based on per user, some users can do it, and some should be blocked Quote Link to comment Share on other sites More sharing options...
Vodia PBX Posted January 27, 2009 Report Share Posted January 27, 2009 exactly, id like to see a "i am stupid and forgot my password so please email it to me"but like i said, it should be based on per user, some users can do it, and some should be blocked Yes, plus we just added at least the initial email with the web password. If the user is smart enough to go through old emails he might find it. Probably we should add a button that triggers the sending of this again. But still be must mandate that the user enters a valid email address - which is a challenge for some... Stupid end users! Quote Link to comment Share on other sites More sharing options...
hosted Posted January 30, 2009 Report Share Posted January 30, 2009 first time i have heard of a hard crash. pbxnsip is very stable but a good rule of thumb is to not be bleeding edge on software revisions. We are still on 3.0.1 really wanting to upgrade but there seems to be a pretty heavy core change that is making things a little hard for me to be willing to upgrade to 3.1+ Quote Link to comment Share on other sites More sharing options...
Vodia PBX Posted January 30, 2009 Report Share Posted January 30, 2009 first time i have heard of a hard crash. pbxnsip is very stable but a good rule of thumb is to not be bleeding edge on software revisions.We are still on 3.0.1 really wanting to upgrade but there seems to be a pretty heavy core change that is making things a little hard for me to be willing to upgrade to 3.1+ If there is no need to upgrade don't do it... We keep the release notes on the Wiki. If there is nothing that interests you, "never change a running system". Quote Link to comment Share on other sites More sharing options...
Graham Lewis Posted February 19, 2009 Report Share Posted February 19, 2009 We are running 3.1.1.3110 (Win32) and consistently after 10 failed login attempts in quick succession the pbx service restarts. At first we thought it was a great feature that was blocking IP addresses of failed users until we realised that no the whole PBX was restarting. Quote Link to comment Share on other sites More sharing options...
pbx support Posted February 19, 2009 Report Share Posted February 19, 2009 We are running 3.1.1.3110 (Win32) and consistently after 10 failed login attempts in quick succession the pbx service restarts. At first we thought it was a great feature that was blocking IP addresses of failed users until we realised that no the whole PBX was restarting. There was a fix provided the newer versions (in the last 2 weeks). Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.