[asterisk-users] Am I being hacked?
Giles Coochey
giles at coochey.net
Tue Aug 20 03:48:48 CDT 2013
On 19/08/2013 19:10, Eric Wieling wrote:
> One of Asterisk's dirty little secrets is that it does not show the source IP when a device or hacker tries sending a call without registering. The rejection message in the logs do not show the IP of the attacker. Yes it sucks, yes it has been that way for many many years.
>
>
With Asterisk 11 (at least), if you use the security log, it does show
the source IP.
I have configured fail2ban to automatically block these, as shown here:
http://www.coochey.net/?p=61
--
Regards,
Giles Coochey, CCNP, CCNA, CCNAS
NetSecSpec Ltd
+44 (0) 8444 780677
+44 (0) 7983 877438
http://www.coochey.net
http://www.netsecspec.co.uk
giles at coochey.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4755 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.digium.com/pipermail/asterisk-users/attachments/20130820/f7aee685/attachment-0001.bin>
More information about the asterisk-users
mailing list