FAQ/How to secure a snom against Javascript attacks

From Snom User Wiki

< FAQ
Jump to: navigation, search
Languages: English • Deutsch

Overview

Security is one of the most important topics that IT managers face today. Security requires that the cooperation of the end-user. As the manufacturer can only offer devices with a standard password, end-user should put their own password on the device and this way secure the phones. The following instructions give you some safety tips.

How To secure Version 7

Under “Advanced Settings” you are at the “Network” Tab, scroll down to HTTP.

Image:secure_v7_1.png 
  • Set “Web server connection type” to https only (beware, that after saving your phone is only accessible over https)
  • Set the “Auto Logout (min)” value to 1 min.
  • Save
  • Click on the QoS/Security tab
Image:secure_v7_2.png 
  • Switch the “Administrator mode” to off.
  • Set a secure “Administrator password”.
  • Set at the HTTP Server “User” and “Password”.- Save

How To secure Version 6

Image:secure_v6.png 
  • Set at the HTTP Server “User” and “Password” (use a secure password)
  • Set “Webserver connection type” to https only (beware, that after saving your phone is only accessible over https)
  • Set the “Auto Logout (min)” value to 1 min
  • Switch the “Administrator mode” to OFF
  • Set a secure “Administrator password”
  • Save (by clicking on save).
Personal tools
Interoperability