[ILUG] Asterisk security
Barry O'Donovan
barry at opensolutions.ie
Mon Nov 8 14:13:44 GMT 2010
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 08/11/10 12:42, Kevin Brennan wrote:
> As many of you may be Asterisk owners or maintainers I think this
> mailing list is a good place to highlight the importance of making sure
> security has been considered.
This is actually a very timely post as we've also seeing a huge increase
in SIP attacks and some successful ones.
http://www.opensolutions.ie/blog/2010/09/sip-brute-force-attacks/
The above has a quick how to for Fail2ban with Asterisk SIP. This is a
tool which can scan log files like /var/log/asterisk/full and firewall
IP addresses that makes too many failed authentication attempts.
This may also be useful: http://www.infiltrated.net/asterisk-ips.html
- Barry
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAkzYBZgACgkQ9qwC7To4L8zmrwCfXKqOg2lGUdbjqM0SqZHgxTsa
r74An0g9NZnqunfUTSOsJaQuVYbMzUCd
=/DD7
-----END PGP SIGNATURE-----
More information about the ILUG
mailing list