[asterisk-dev] Security Request for discussion: Should sip.conf allowguest=yes be the default

Jared Smith jsmith at digium.com
Thu Nov 12 07:56:48 CST 2009


On Thu, 2009-11-12 at 09:20 +0100, Olle E. Johansson wrote:
> Here we need to explain that anything here is exposed to anyone if you have allowguest=yes in sip.conf.

Although the majority of the malicious activity I'm seeing is related to
the SIP protocol, we should probably make the same warnings for the IAX
channel driver as well.



-- 
Jared Smith
Training Manager
Digium, Inc.




More information about the asterisk-dev mailing list