Hardware Reference
In-Depth Information
Running a softphone on the Pi
It's always good to be able to reach your agents directly from HQ, that is, the
Pi itself. Proving once again that anything can be done from the command line,
we're going to install a softphone called Linphone that will make good use of your
USB microphone.
This new softphone obviously needs a user ID and password just like the others. We
will take this opportunity to look at a better way of storing passwords in SIP Witch.
Encrypting SIP Witch passwords
Type
sudo sipwitch dump
to see how SIP Witch is currently configured. Find
the
accounts:
section and note how there's already a user ID named
pi
with
extension
200
.
This is the result of a SIP Witch feature that automatically assigns an extension
number to certain Raspbian user accounts. You may also have noticed that the
display
string for the
pi
user looks empty. We can easily fix that by filling in
the full name field for the Raspbian
pi
user account with the following command:
pi@raspberrypi ~ $ sudo chfn -f "Agent HQ" pi
Now restart the SIP Witch server with
sudo service sipwitch restart
and verify
with
sudo sipwitch dump
that the
display
string has changed.
So how do we set the password for this automatically added
pi
user? For the other
accounts, we specified the password in clear text inside
<secret>
tags in
/etc/
sipwitch.conf
. This is not the best solution from a security perspective if your Pi
would happen to fall into the wrong hands. Therefore, SIP Witch supports specifying
passwords in encrypted digest form. Use the following command to create an
encrypted password for the
pi
user:
pi@raspberrypi ~ $ sudo sippasswd pi
We can then view the database of SIP passwords that SIP Witch knows about:
pi@raspberrypi ~ $ sudo cat /var/lib/sipwitch/digests.db
Now you can add digest passwords for your other SIP users as well and then delete
all
<secret>
lines from
/etc/sipwitch.conf
to be completely free of clear text.
