[asterisk-users] Security on long distance calls

Salvatore Giudice Salvatore.Giudice at VoIPSecurityTraining.com
Sun Apr 1 09:53:31 MST 2007


Using caller id to authenticate anyone is asking for a toll fraud problem.
4-digit pins really are not a good idea either.

 

Try putting your operators and your users in different contexts. If you have
specific numbers you don't want the users to be able to dial, then create
patterns for those numbers. Play a sound byte that says the call is not
allowed and then hang up.

 

 

 

--------------------------------------------------
Salvatore Giudice
Salvatore.Giudice at VoIPSecurityTraining.com

VoIP Security Training, LLC
http://VoIPSecurityTraining.com

848 N. Rainbow Blvd. #1676
Las Vegas, NV 89107
Phone: (702) 979-2906
Fax: (212) 279-2906

 

From: asterisk-users-bounces at lists.digium.com
[mailto:asterisk-users-bounces at lists.digium.com] On Behalf Of Dovid B
Sent: Sunday, April 01, 2007 5:54 AM
To: Asterisk Users Mailing List - Non-Commercial Discussion
Subject: Re: [asterisk-users] Security on long distance calls

 

Or you can do

 

exten => _011.,1,Authenticate(1234)

exten => _011.,2,Dial(SIP/${EXTEN}@sip_provider
<mailto:SIP/$%7bEXTEN%7d at sip_provider> )

 

Also this is a bit more complicated but you can do it by sip extension. If
CID of phone = phone that is allowed then let it go out..... This will be
hard considering you will have to make a gotoif for every extension that you
want to allow to call intl.

----- Original Message ----- 

From: Rizwan Hisham <mailto:rizwanhasham at gmail.com>  

To: Asterisk Users Mailing List - <mailto:asterisk-users at lists.digium.com>
Non-Commercial Discussion 

Sent: Friday, March 30, 2007 11:18 AM

Subject: Re: [asterisk-users] Security on long distance calls

 

For operator:

[longdistance]
include=> local
include=> International

for extensions:

[localcalls]
include=> local

now assign longdistance context to operator and localcalls context to every
other user for whom you want to restrict intl calls 

[local]
should include all local extension codes

[International]
should include all international extension codes

you get my point?

On 3/30/07, Stefano Corsi <scorsi at floo.it> wrote: 

Hello, 

which kind of method could you use to inhibit long distance calls to
_some_ extensions?
Is there a way to do it with freepbx or you have to do it manually in
the config files? I wouldn't like to set a route password, because 
that is not confortable for the pbx operator. I just would like the
operator being able to call whatever number, while the extensions
should only be able to make local calls.

Thanks
Stefano


_______________________________________________
--Bandwidth and Colocation provided by Easynews.com --

asterisk-users mailing list
To UNSUBSCRIBE or update options visit:
   http://lists.digium.com/mailman/listinfo/asterisk-users




-- 
Regards
Rizwan Hisham
Software Engineer 

  _____  

_______________________________________________
--Bandwidth and Colocation provided by Easynews.com --

asterisk-users mailing list
To UNSUBSCRIBE or update options visit:
   http://lists.digium.com/mailman/listinfo/asterisk-users

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.digium.com/pipermail/asterisk-users/attachments/20070401/88e281d5/attachment.htm


More information about the asterisk-users mailing list