[asterisk-users] Monitor asterisk

Hans Witvliet hwit at a-domani.nl
Tue Aug 17 01:34:20 CDT 2010


On Mon, 2010-08-16 at 13:35 -0400, Jamie A. Stapleton wrote:
> Might be worth your time to check out:  http://www.humbuglabs.org/
> 

Though they write:
...
insight into the enterprise’s telephony infrastructure. Utilizing a set
of none-intrusive analytical technologies, Humbug is capable of
interfacing directly with your PBX system, analyzing its traffic,
plotting it and providing
...

It looks (!) like an online-service.
Who would give an outsider access to your phone-usage info?

And what are these so-called "none-intrusive analytical technologies" ??

With this scarce amount of info, i wouldn't even bother to sign....

When looking at their "terms of service" :

....
"Humbug Agent" means the open source Humbug Agent which is installed on
a PBX or Softswitch for the purpose of collecting Customer Data,
together with any fixes, updates and upgrades provided to you
(collectively, the "Humbug Agent"). 

"Servers" means the servers controlled by Humbug (or its wholly owned
subsidiaries) upon which the Processing Software and Customer Data are
stored.
....

So it looks like your CDR-data is collected by an Humbug-program and
afterwards sent to on of _THEIR_ servers....

Scarry!!!

Funny thing is though, that they even dare to use the phrase "fraud
detection".

Security is about knowing what to trust and what not.



More information about the asterisk-users mailing list