[ILUG] Asterisk security
kevin.brennan at redsquared.com
Mon Nov 8 14:04:35 GMT 2010
On 08/11/2010 12:58, Gavin McCullagh wrote:
>> - change your sip port from default 5060 to something different,
>> > 5060 is constantly scanned
> Is this an option if you take incoming SIP calls?
Sure. The sip uri you send to the REGISTRAR can have any port associated
with it (example sip:contactme at myipaddress:50666) - in fact ports are
often not on 5060 as there is a NAT mapping involved.
>Do you mean extensions or usernames? If one has physical VoIP >handsets,
>numeric extensions are hard to get away from. The username can be
>alphanumeric though, while the extension is still purely numeric.
Strictly speaking the SIP authname (that's what's used in the digest
authentication) - However the term name/username/extension/authname is
sometimes common or used ambiguously within Asterisk and other
softphones which can be a little confusing.
More information about the ILUG