[OpenSIPS-Users] SIP Authentication Attacks

aws j awscomputer2009 at gmail.com
Thu Feb 2 05:08:16 CET 2012


Dear Mr James
Can you attached to me your suspect file to make VoIP forensic on it .
thanks
Aws
Msc VoIP security

2012/2/1 James Lamanna <jlamanna at gmail.com>

> Hi,
> I've noticed lately that a server of mine is getting repeatedly hit by
> an attacker trying to make international calls.
> The scary part is that the attacker seems to be able to register
> correctly on different extensions, even though each extension has a
> different, random password.
> I'm not sure how the attacker is getting the passwords or if there's a
> man-in-the-middle attack going on, but I would like some suggestions
> on how to increase the security of SIP authentication in opensips.
> I could enforce security through IP addresses, but I fear that will
> become quite cumbersome.
>
> Thanks.
>
> -- James
>
> _______________________________________________
> Users mailing list
> Users at lists.opensips.org
> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opensips.org/pipermail/users/attachments/20120201/3930ca92/attachment.htm>


More information about the Users mailing list