[asterisk-dev] auto blacklisting "script kiddies"
Steven Critchfield
critch at basesys.com
Fri May 4 09:11:47 MST 2007
On Fri, 2007-05-04 at 18:57 +0300, Tzafrir Cohen wrote:
> On Fri, May 04, 2007 at 12:10:07PM -0300, Christian Villa Real Lopes wrote:
> > I like to improve this ideia as follow:
> >
> > All already registered users IP create an whitelist that never
> > blacklists (or configurable never) plus an file/table with a whitelist.
>
> But then, how will new connections register?
> (unless you only have static SIP peers)
Umm, so far his suggestion hasn't created a blacklist, so there isn't
any impediment to registration.
Looks like the plan is to have a list of IPs you have received
registrations from in the past, and not blacklist them due to a DoS
attack with faked source addresses.
--
Steven Critchfield <critch at basesys.com>
More information about the asterisk-dev
mailing list