Well..<br><br>Thanks. That could be a solution.<br><br>What I am thinking right now is to use some kind of authentication, perhaps using OpenSSL, so that Asterisk can filter which packet to process, and which one to dump.<br>
<br>Any comments, suggestions, critics? What do you guys think?<br><br>Thank You<br>Fadil<br><br><div class="gmail_quote">On Jan 29, 2008 10:27 PM, Duane <<a href="mailto:duane@e164.org">duane@e164.org</a>> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div class="Ih2E3d">Abu 'Ubayd Fadil wrote:<br><br>> So, I am planning to solve this problem and need more information if<br>
> anything has been done regarding this so far.<br><br></div>Most people 'solve' security issues with Asterisk by putting something<br>else in front of it (like OpenSER etc)...<br><br>When I was making code to test if a SIP address is accepting calls etc I<br>
made a few mistakes and ended up causing a DoS with RTP by accident, I<br>could easily see this leading to smurf style attacks using RTP instead<br>of ICMP...<br><br>--<br><br>Best regards,<br> Duane<br><br><a href="http://www.freeauth.org" target="_blank">http://www.freeauth.org</a> - Enterprise Two Factor Authentication<br>
<a href="http://www.nodedb.com" target="_blank">http://www.nodedb.com</a> - Think globally, network locally<br><a href="http://www.sydneywireless.com" target="_blank">http://www.sydneywireless.com</a> - Telecommunications Freedom<br>
<a href="http://e164.org" target="_blank">http://e164.org</a> - Because e164.arpa is a tax on VoIP<br><br>"In the long run the pessimist may be proved right,<br> but the optimist has a better time on the trip."<br>
<br>_______________________________________________<br>--Bandwidth and Colocation Provided by <a href="http://www.api-digital.com--" target="_blank">http://www.api-digital.com--</a><br><br>asterisk-security mailing list<br>
To UNSUBSCRIBE or update options visit:<br> <a href="http://lists.digium.com/mailman/listinfo/asterisk-security" target="_blank">http://lists.digium.com/mailman/listinfo/asterisk-security</a><br></blockquote></div><br>