<div>Hello Xavier,</div><div><br></div><div>Unfortunately we are not aware of any Asterisk configuration which will protect against of a brute force attack on SIP. </div><div><br></div>We use BFD - <a href="http://www.rfxn.com/projects/brute-force-detection/">http://www.rfxn.com/projects/brute-force-detection/</a> .<div>
<br></div><div>We have found first details here: <a href="http://engineertim.com/?cat=15">http://engineertim.com/?cat=15</a> and we are currently maintaining 4 rules (SIP and IAX) . All of them could be downloaded from here: <a href="http://www.modulo.ro/Modulo/downloads/tools/tenora.bfd.tar.gz">http://www.modulo.ro/Modulo/downloads/tools/tenora.bfd.tar.gz</a><div>
<br></div><div>We have tried to document the installation of BFD on an Asterisk server here: <a href="http://www.modulo.ro/Modulo/ro/Articole/Securitate_pentru_servere_Asterisk.html">http://www.modulo.ro/Modulo/ro/Articole/Securitate_pentru_servere_Asterisk.html</a> (in Romanian)</div>
<div><br></div><div><br></div><div>HTH,</div><div>Ioan (Nini) Indreias</div><div><a href="http://www.modulo.ro">www.modulo.ro</a></div><div><br></div><div><br><div class="gmail_quote">On Mon, Nov 16, 2009 at 7:24 PM, TDF <span dir="ltr"><<a href="mailto:aja101561@gmail.com">aja101561@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">fail2ban<br><br><a href="http://www.voip-info.org/wiki/view/Fail2Ban+%28with+iptables%29+And+Asterisk" target="_blank">http://www.voip-info.org/wiki/view/Fail2Ban+%28with+iptables%29+And+Asterisk</a><br>
<br><br><div class="gmail_quote">2009/11/16 Xavier Mesquida <span dir="ltr"><<a href="mailto:xavimes@yahoo.com" target="_blank">xavimes@yahoo.com</a>></span><div class="im"><br>
<blockquote class="gmail_quote" style="border-left:1px solid rgb(204, 204, 204);margin:0pt 0pt 0pt 0.8ex;padding-left:1ex"><table border="0" cellpadding="0" cellspacing="0"><tbody><tr><td style="font-family:inherit;font-style:inherit;font-variant:inherit;font-weight:inherit;font-size:inherit;line-height:inherit;font-size-adjust:inherit;font-stretch:inherit" valign="top">
Has Asterisk any protection against brute force attack for SIP authentication?<br>Something like a maximum login attempt limit <br>Thanks<br><br></td></tr></tbody></table><br></blockquote></div></div><br>
<br>_______________________________________________<br>
-- Bandwidth and Colocation Provided by <a href="http://www.api-digital.com" target="_blank">http://www.api-digital.com</a> --<br>
<br>
asterisk-users mailing list<br>
To UNSUBSCRIBE or update options visit:<br>
<a href="http://lists.digium.com/mailman/listinfo/asterisk-users" target="_blank">http://lists.digium.com/mailman/listinfo/asterisk-users</a><br></blockquote></div><br></div></div>