[Asterisk-Users] Fwd: [ISN] Voice Over IP Can Be Vulnerable To Hackers, Too

Andy Powell andy at beagles-den.demon.co.uk
Fri May 14 12:34:26 MST 2004


I'm sorry, but any IT Manager who looks "upon Internet phoning as a relatively secure technology" doesn't deserve their job.. and any IT Manager that doesn't realise that VoIP is "an IP service" and hence susceptible to the "pestilence that threatens all networked systems" should be shot where they stand


Andy



On 14/05/2004 at 14:57 tmpm wrote:

>Hope this isn't too far OT, but its relevant to us. From isn.attrition.org
>
>
>
>>http://www.informationweek.com/story/showArticle.jhtml?articleID=20300851
>>
>>By W. David Gardner
>>TechWeb News
>>May 13, 2004
>>
>>As voice over IP sweeps across the high-tech landscape, many IT
>>managers are being lulled into a dangerous complacency because they
>>look upon Internet phoning as a relatively secure technology--not as
>>an IP service susceptible to the same worms, viruses, and other
>>pestilence that threatens all networked systems.

>>
>>"With VoIP," security specialist Mark Nagiel said Thursday in an
>>interview, "we're inserting a new technology into an unsecured and
>>unprotected environment. VoIP is essentially availability driven, not
>>security driven, and that's the problem." But Nagiel, manager of
>>security consulting at NEC Unified Solutions, said that there are
>>measures that can be taken to protect voice over IP from the threats
>>that confront Web telephoning.
>>
>>The first step--an obvious one, he says--is to secure existing TCP/IP
>>networks. Nagiel is finding that the new government-required
>>regulations--such as Sarbanes-Oxley, which stipulates improved
>>accounting record-keeping, and HIPAA in health care--are helping IT
>>managers because they impose security discipline across-the-board.
>>"The financial and health-care fields are getting secured very
>>quickly," Nagiel said.
>>
<snip>





More information about the asterisk-users mailing list