[asterisk-users] fail2ban + asterisk
Pezhman Lali
lopl at lopl.net
Sun Mar 6 00:54:53 CST 2011
Dear
this note is only for fresh administrators don't think about asterisk
security.
I found fail2ban very useful for anti asterisk hacking, so I want to share
it with fresh admins.
some hackers try your sip or iax2 ip with a lot of username/password, may be
after 1 million try, one username/password was accepted. so in 2-3 hours,
they use all of the credit of the hacked user.
fail2ban, runs as service, and checks the logs, and blocks the suspicious
IPs.
for more info:
http://www.fail2ban.org/wiki/index.php/Asterisk
http://www.voip-info.org/wiki/view/Fail2Ban+(with+iptables)+And+Asterisk
best
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.digium.com/pipermail/asterisk-users/attachments/20110306/b68be002/attachment.htm>
More information about the asterisk-users
mailing list