Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




3595 posts

Uber Geek
+1 received by user: 79

Trusted
WorldxChange

Topic # 65912 9-Aug-2010 09:53 Send private message

With the amount of SIP hacking on the increase this is a pretty good webinar for those people that are running Asterisk Boxes,

We have seen a increase in SIP hacking attempts across NZ at the moment, it comes and goes in cycles and you would have possibly seen a few News Items about it as well ,

Whilst we take care of the certified devices on VFX, security on Open VFX and Asterisk devices is the users' responsibilty so here is a nice little webinar sent to me by my support team to share with you.

Please Asterisk users take your security seriously as getting burned can be costly for you and us and niether of us want that Cry.

If in doubt seek advice

http://www.asterisk.org/security/webinar







Yes I am a employee of WxC (My Profile) ... but I do have my own opinions as well Wink

             

https://www.facebook.com/wxccommunications

Create new topic
Infrastructure Geek
4040 posts

Uber Geek
+1 received by user: 192

Trusted
Microsoft NZ
Subscriber

  Reply # 365276 9-Aug-2010 10:37 Send private message

i think we've seen some 2000 SIP requests bounce off our firewall in the last two weeks. Varying source IP's and varying CLI's. Well worth a second look, even if you think you're safe..




Technical Evangelist
Microsoft NZ
about.me/nzregs
Twitter: @nzregs


24736 posts

Uber Geek
+1 received by user: 4664

Moderator
Trusted
Biddle Corp
Subscriber

  Reply # 365288 9-Aug-2010 11:03 Send private message

I've seen numerous attacks looking back at logs as well.

If you're running trixbox the fail2ban script is in later distributions. You should be running this as a bare minimum. Extensions locked down to local IP ranges is also a very good idea!


BDFL - Memuneh
57591 posts

Uber Geek
+1 received by user: 9228

Administrator
Trusted
Geekzone
Subscriber

  Reply # 369696 19-Aug-2010 09:48 Send private message

Please note I have posted an update in this thread.






5827 posts

Uber Geek
+1 received by user: 2444

Trusted
Subscriber

  Reply # 369700 19-Aug-2010 09:53 Send private message

I'm seeing quite a few bounces off our Asterisk server too >.<




Michael Murphy | https://murfy.nz
Want to be with an epic ISP? Want $20 to join them too? Well, use this link to sign up to BigPipe!
The Router Guide | Community UniFi Cloud Controller | Ubiquiti Edgerouter Tutorial




3595 posts

Uber Geek
+1 received by user: 79

Trusted
WorldxChange

  Reply # 369711 19-Aug-2010 10:27 Send private message

We will have something deployed shortly that will assist our Asterisk customers.




Yes I am a employee of WxC (My Profile) ... but I do have my own opinions as well Wink

             

https://www.facebook.com/wxccommunications

Create new topic








Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site: