In other words, please upgrade ASAP.
In case anybody didn't notice, there is a significant denial-of-service
attack that is fixed in 1.2.16. Basically, if you run SIP and can be
reached from the Internet, your * server can be crashed in under a
second by any script kiddy, anywhere in the world. There is an exploit
available and I tested it on my backup * server, which crashed before I
got my finger off the return key.
- Still running * 1.2.15 or earlier? Time to move ... Ian Darwin
- Re: [on-asterisk] Still running * 1.2.15 or... Aloysius Thevarajah Lloyd
- Re: [on-asterisk] Still running * 1.2.1... Adam Ronthal
- Re: [on-asterisk] Still running * 1... Aloysius Thevarajah Lloyd
- Re: [on-asterisk] Still running * 1.2.15 or... Duane
