[asterisk-dev] New Feature Idea

Paul Belanger paul.belanger at polybeacon.com
Mon Sep 27 10:37:01 CDT 2010


On Sun, Sep 26, 2010 at 7:11 AM, Nir Simionovich
<nir.simionovich at gmail.com> wrote:
>   As some of you know, I'm currently involved in developing an
> Anti-Fraud system.
> I've recently analyzed an Asterisk hack that happened about 2 weeks ago.
> The hack
> involved the hacking of the "asterisk-config" tool via an insecure
> website, then
> adding a new context with "NoCDR" application in it.
>
If you are able to reproduce this, I would open a private issue on
https://issues.asterisk.org so we can triage this issue.  Include all
relevant .config files, and method to reproduce.

-- 
Paul Belanger | dCAP
Polybeacon | Consultant
Jabber: paul.belanger at polybeacon.com | IRC: pabelanger (Freenode)
blog.polybeacon.com



More information about the asterisk-dev mailing list