[asterisk-biz] PBX got Hacked
Trixter aka Bret McDanel
trixter at 0xdecafbad.com
Tue Mar 10 06:15:22 CDT 2009
On Tue, 2009-03-10 at 04:52 -0400, voip-asterisk at maximumcrm.com wrote:
> Of course everyone running Asterisk can get 3 humans to monitor the logs
> 24/7 for the signs of an attack.
>
well if they do it right they dont have to do that, but that does make a
good argument of why no one should monitor their logs ever, oh wait no
it doesnt.
> Has anyone actually seen an attack with spoofed IPs anyways?
yes, several in fact. I even wrote a program that would "smurf" from
asterisk and other platforms which relied on spoofed IPs to get the
asterisk box to send data to the victim IP, so I am fairly certain that
such things do exist.
--
Trixter http://www.0xdecafbad.com Bret McDanel
pgp key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x8AE5C721
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part
Url : http://lists.digium.com/pipermail/asterisk-biz/attachments/20090310/032e1431/attachment.pgp
More information about the asterisk-biz
mailing list