Right now from the main index.html page, Flash Operator Panel is wide open for anyone on the planet earth with internet access to see if port 80 and 4445 are forwarded through the router. This is necessary for many people like me who want access from the internet.
It would be great if FreePBX provide a way to password protect Flash Operator Panel instead of having to manually create users and edit the httpd.conf file. Once you have to do that it kind of makes the admin access module in FreePBX redundant because then you have to also add those users. If there was a way to limit access to Flash Operator Panel, perhaps via the Admin Access module, that would satisfy what I see as a major hole in FreePBX authenticated access as it is now. While at it, the Voicemail and Recordings (ARI) directory could also be included.
