[asterisk-users] Security issue

Gordon Henderson gordon+asterisk at drogon.net
Mon Feb 9 06:34:19 CST 2009


On Mon, 9 Feb 2009, Geraint Lee wrote:

> what about something along the lines of...
>
> iptables .....


Well, whatever, but this isn't an answer to my question and I'm still 
curious as to how the hackers are breaking usernames and passwords, as I 
have servers which I can't firewall and if there is some sort of 
vulnerability, I want to know about it.

Or did the OP just pick stupidly easily guessable username and password 
combinations?

Gordon

>
> Cheers
>
>
> 2009/2/9 Gordon Henderson
> <gordon+asterisk at drogon.net<gordon%2Basterisk at drogon.net>
>>
>
>> On Fri, 6 Feb 2009, oumar ndiaye wrote:
>>
>>> Is there a way to restrict connection to my asterisk server to users
>> based
>>> on their IP addresses, and not just password. I have some hackers who
>>> connect to my server to make illegitimate solicitation calls to people. I
>>> had to shutdown the server for now until I find a solution. ANY HELP?
>>
>> I'm curious about hackers getting in when you have username and passwords
>> set.
>>
>> How are they cracking the passwords in the first place?
>>
>> Gordon
>>
>> _______________________________________________
>> -- Bandwidth and Colocation Provided by http://www.api-digital.com --
>>
>> asterisk-users mailing list
>> To UNSUBSCRIBE or update options visit:
>>   http://lists.digium.com/mailman/listinfo/asterisk-users
>>
>



More information about the asterisk-users mailing list