It's an open source project. Pay a programmer or make the modification yourself and submit a patch.<div class="gmail_extra"><br><br><div class="gmail_quote">On Sat, Nov 24, 2012 at 4:51 PM, Ron Wheeler <span dir="ltr"><<a href="mailto:rwheeler@artifact-software.com" target="_blank">rwheeler@artifact-software.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">I looking through my logs, I found that people where probing my SIP accounts looking for passwords.<br>
Asterisk was helping them out by processing hundreds of requests per minute.<br>
I did a bit of Googling and this seems to be a frequent knock against Asterisk's security.<br>
<br>
It would seem pretty simple to add a configuration setting to sip.conf to delay the response to a bad account or password.<br>
<br>
There is a half measure to confuse the probe by sending the same error return for either error.<br>
It appears that many people have complained that this should be the default setting only changed if your are debugging a problem.<br>
<br>
There is no reason for a working system to ever have bad passwords so this is clearly an attack in almost every case.<br>
<br>
A simple delay would solve the problem for most people who use reasonable passwords.<br>
<br>
I had to install fail2ban which is a PITA but thanks to someone's clear recipe, I was able to get it working.<br>
<br>
I hope that this can be worked into a release soon.<br>
<br>
Ron<br>
<br>
-- <br>
Ron Wheeler<br>
President<br>
Artifact Software Inc<br>
email: <a href="mailto:rwheeler@artifact-software.com" target="_blank">rwheeler@artifact-software.com</a><br>
skype: ronaldmwheeler<br>
phone: <a href="tel:866-970-2435%2C%20ext%20102" value="+18669702435" target="_blank">866-970-2435, ext 102</a><br>
<br>
<br>
--<br>
______________________________<u></u>______________________________<u></u>_________<br>
-- Bandwidth and Colocation Provided by <a href="http://www.api-digital.com" target="_blank">http://www.api-digital.com</a> --<br>
New to Asterisk? Join us for a live introductory webinar every Thurs:<br>
<a href="http://www.asterisk.org/hello" target="_blank">http://www.asterisk.org/hello</a><br>
<br>
asterisk-users mailing list<br>
To UNSUBSCRIBE or update options visit:<br>
<a href="http://lists.digium.com/mailman/listinfo/asterisk-users" target="_blank">http://lists.digium.com/<u></u>mailman/listinfo/asterisk-<u></u>users</a><br>
</blockquote></div><br><br clear="all"><div><br></div>-- <br>-Chris Harrington<br><div>ACSDi Office: 763.559.5800</div><div><div>Mobile Phone: 612.326.4248</div></div><div><br></div><br>
</div>