[asterisk-users] Is there a public blacklist of hackers' IP addresses?

[Gordon Henderson]

On Mon, 23 Mar 2009, Zeeshan Zakaria wrote:

> Hi,
>
> In last one week I have seen two servers of our organization successfully
> hacked and some other under attack from some other IP addresses. We would
> block one IP address on our firewall and after a few hours, they would start
> getting hits from some another IP address. When I checked them on whois.net,
> they all were from Amsterdam. Surprisingly, I once had similar attack in the
> past and it was also from an Amsterdam IP address. And they all blong to one
> same organization.
>
> Seems like somebody in Amsterdam is really active in trying to hack asterisk
> servers around the world.

Are you willing to share details of the hack? Eg. Did they gain root 
access to the server? Did they exploit a bug in the web server to run 
code? Did they guess SIP username/password combinarions? Or something 
else?

Gordon