[asterisk-users] Am I cracked?

Mitul Limbani mitul at enterux.in
Mon Jun 8 15:40:58 CDT 2015 

As a practice, by default all the extensions you expose on the allowguest
mode should lead inbound to your asterisk and should never pick any
outbound trunk and dial out.

Your best option is to remove all outbound extensions from the default
context, move them to default2 and set default extensions as honeypot to
play monkeys tts wave file or reject the call.

Mitul Limbani
 On 09-Jun-2015 2:05 AM, "D'Arcy J.M. Cain" <darcy at vex.net> wrote:

> On Mon, 8 Jun 2015 22:24:33 +0200
> Luca Bertoncello <lucabert at lucabert.de> wrote:
> > Kevin Larsen <kevin.larsen at pioneerballoon.com> schrieb:
> > > Basically, they are hoping that you are running the equivalent of a
> > > mail server open relay. They are trying to use you to dial out to
> > > another number. You don't want to pay for these calls.
> >
> > Of course, but how can I test, if I am an "open relay"?
>
> If you don't know how to do this I suggest that you shut down your
> Asterisk server until you find out.  Using your cell phone while you
> get it straight could save you some serious coin.
>
> > > Not sure what trunk pbxluca is, but if that is an outbound trunk,
> > > then this is very bad. The only reason it would fail then is if
> > > they have the
> >
> > This is one of my outbound trunk...
>
> Very, very bad then.
>
> > On a Mail-Server I'd restrict outgoing calls to authenticated users.
> > I was sure, that Asterisk already do that, but I'm not sure anymore...
> > How can I restrict it?
>
> You need to make sure that only registered phones can connect to your
> outbound trunks.  Read the docs or hire someone but don't wait.  Shut
> down now, especially since this information is now on a public list.  I
> am sure that most people here are just looking out for you but it only
> takes one black hat.
>
> --
> D'Arcy J.M. Cain
> System Administrator, Vex.Net
> http://www.Vex.Net/ IM:darcy at Vex.Net
> VoIP: sip:darcy at Vex.Net
>
> --
> _____________________________________________________________________
> -- Bandwidth and Colocation Provided by http://www.api-digital.com --
> New to Asterisk? Join us for a live introductory webinar every Thurs:
>                http://www.asterisk.org/hello
>
> asterisk-users mailing list
> To UNSUBSCRIBE or update options visit:
>    http://lists.digium.com/mailman/listinfo/asterisk-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.digium.com/pipermail/asterisk-users/attachments/20150609/bbab56cb/attachment.html>

More information about the asterisk-users mailing list