Hello Xavier, Unfortunately we are not aware of any Asterisk configuration which will protect against of a brute force attack on SIP.
We use BFD - http://www.rfxn.com/projects/brute-force-detection/ . We have found first details here: http://engineertim.com/?cat=15 and we are currently maintaining 4 rules (SIP and IAX) . All of them could be downloaded from here: http://www.modulo.ro/Modulo/downloads/tools/tenora.bfd.tar.gz We have tried to document the installation of BFD on an Asterisk server here: http://www.modulo.ro/Modulo/ro/Articole/Securitate_pentru_servere_Asterisk.html (in Romanian) HTH, Ioan (Nini) Indreias www.modulo.ro On Mon, Nov 16, 2009 at 7:24 PM, TDF <[email protected]> wrote: > fail2ban > > > http://www.voip-info.org/wiki/view/Fail2Ban+%28with+iptables%29+And+Asterisk > > > 2009/11/16 Xavier Mesquida <[email protected]> > > Has Asterisk any protection against brute force attack for SIP >> authentication? >> Something like a maximum login attempt limit >> Thanks >> >> >> > > _______________________________________________ > -- Bandwidth and Colocation Provided by http://www.api-digital.com -- > > asterisk-users mailing list > To UNSUBSCRIBE or update options visit: > http://lists.digium.com/mailman/listinfo/asterisk-users >
_______________________________________________ -- Bandwidth and Colocation Provided by http://www.api-digital.com -- asterisk-users mailing list To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users
