[asterisk-users] Security issue
Geraint Lee
geraint at gmail.com
Mon Feb 9 05:09:34 CST 2009
what about something along the lines of...
iptables -A INPUT -p udp --dport 5060 -j DROP
iptables -A INPUT -p udp -s 192.168.0.0/24 --dport 5060 -j ACCEPT
iptables -A INPUT -p udp -s 10.0.0.0/8 --dport 5060 -j ACCEPT
iptables -A INPUT -p udp -s 66.66.66.66 --dport 5060 -j ACCEPT
Cheers
2009/2/9 Gordon Henderson
<gordon+asterisk at drogon.net<gordon%2Basterisk at drogon.net>
>
> On Fri, 6 Feb 2009, oumar ndiaye wrote:
>
> > Is there a way to restrict connection to my asterisk server to users
> based
> > on their IP addresses, and not just password. I have some hackers who
> > connect to my server to make illegitimate solicitation calls to people. I
> > had to shutdown the server for now until I find a solution. ANY HELP?
>
> I'm curious about hackers getting in when you have username and passwords
> set.
>
> How are they cracking the passwords in the first place?
>
> Gordon
>
> _______________________________________________
> -- Bandwidth and Colocation Provided by http://www.api-digital.com --
>
> asterisk-users mailing list
> To UNSUBSCRIBE or update options visit:
> http://lists.digium.com/mailman/listinfo/asterisk-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.digium.com/pipermail/asterisk-users/attachments/20090209/0b28ac46/attachment.htm
More information about the asterisk-users
mailing list