Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.



3558 posts

Uber Geek
+1 received by user: 60

Trusted
WorldxChange

Topic # 65912 9-Aug-2010 09:53 Send private message

With the amount of SIP hacking on the increase this is a pretty good webinar for those people that are running Asterisk Boxes,

We have seen a increase in SIP hacking attempts across NZ at the moment, it comes and goes in cycles and you would have possibly seen a few News Items about it as well ,

Whilst we take care of the certified devices on VFX, security on Open VFX and Asterisk devices is the users' responsibilty so here is a nice little webinar sent to me by my support team to share with you.

Please Asterisk users take your security seriously as getting burned can be costly for you and us and niether of us want that Cry.

If in doubt seek advice

http://www.asterisk.org/security/webinar







Yes I am a employee of WxC (My Profile) ... but I do have my own opinions as well Wink

             

https://www.facebook.com/wxccommunications

Create new topic
Infrastructure Geek
3708 posts

Uber Geek
+1 received by user: 88

Trusted
Microsoft NZ
Subscriber

  Reply # 365276 9-Aug-2010 10:37 Send private message

i think we've seen some 2000 SIP requests bounce off our firewall in the last two weeks. Varying source IP's and varying CLI's. Well worth a second look, even if you think you're safe..




Technical Evangelist
Microsoft NZ
about.me/nzregs
Twitter: @nzregs


19868 posts

Uber Geek
+1 received by user: 1565

Moderator
Trusted
Biddle Corp
Subscriber

  Reply # 365288 9-Aug-2010 11:03 Send private message

I've seen numerous attacks looking back at logs as well.

If you're running trixbox the fail2ban script is in later distributions. You should be running this as a bare minimum. Extensions locked down to local IP ranges is also a very good idea!


BDFL
49992 posts

Uber Geek
+1 received by user: 4645

Administrator
Trusted
Geekzone
Subscriber

  Reply # 369696 19-Aug-2010 09:48 Send private message

Please note I have posted an update in this thread.






The Game.
3057 posts

Uber Geek
+1 received by user: 571

Trusted
Think Concepts
Subscriber

  Reply # 369700 19-Aug-2010 09:53 Send private message

I'm seeing quite a few bounces off our Asterisk server too >.<




Michael Murphy
[Twitter] [Last.fm] [IPv6 Sage]

Everything I say here is my own opinion and not that of my employer.



3558 posts

Uber Geek
+1 received by user: 60

Trusted
WorldxChange

  Reply # 369711 19-Aug-2010 10:27 Send private message

We will have something deployed shortly that will assist our Asterisk customers.




Yes I am a employee of WxC (My Profile) ... but I do have my own opinions as well Wink

             

https://www.facebook.com/wxccommunications

Create new topic




Twitter »
Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





Trending now »

Hot discussions in our forums right now:

How good is your general Science Knowledge?
Created by Aredwood, last reply by joker97 on 31-Oct-2014 23:44 (39 replies)
Pages... 2 3


Government Limos
Created by networkn, last reply by Bung on 31-Oct-2014 12:39 (94 replies)
Pages... 5 6 7


Snap refuses to replace faulty gear
Created by Brendan, last reply by MadEngineer on 28-Oct-2014 19:07 (92 replies)
Pages... 5 6 7


Sky will be 'upgrading software' of My Sky to connect to internet. What does that mean?
Created by Geektastic, last reply by NonprayingMantis on 31-Oct-2014 23:55 (27 replies)
Pages... 2


Shutup and take my money (via NFC on my mobile phone)
Created by sxz, last reply by sonyxperiageek on 31-Oct-2014 22:34 (24 replies)
Pages... 2


Uber: a cheaper taxi ride?
Created by kingdragonfly, last reply by livisun on 31-Oct-2014 14:47 (34 replies)
Pages... 2 3


OneDrive code giveaway - go!
Created by freitasm, last reply by pgsheng on 1-Nov-2014 01:50 (33 replies)
Pages... 2 3


DDos Protection from ISP
Created by charsleysa, last reply by freitasm on 31-Oct-2014 12:11 (46 replies)
Pages... 2 3 4



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.