[asterisk-users] Security tests
Daniel Bareiro
daniel-listas at gmx.net
Wed Apr 21 20:25:07 CDT 2010
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi all!
In the network of my house I was testing the security with my Asterisk
installation. The first test that I'm doing is an man in the middle
attack.
In this scenary, the attacker is a virtual machine that it tries to see
the SIP traffic between a PC with a softphone and a Grandstream BT200
telephone.
But it draws attention to me between the PC with softphone and the
telephone I see traffic ARP or ICMP that could make to try between the
equipment but does not see RTP. Is there some special consideration that
it must to observe? I am doing it to the capture with:
# tcpdump -i eth0 -n host 10.1.0.65 -w dump
where 10.1.0.65 is the PC with softphone.
Thanks in advance for your reply.
Regards,
Daniel
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkvPpYAACgkQZpa/GxTmHTenpwCfcL3gBTTf0jRiEpv0k+jf2GkP
WR8An2RxSdFdkdyRntOmVUof5kOygLYB
=EG9x
-----END PGP SIGNATURE-----
More information about the asterisk-users
mailing list