Hey Duane, Actually if you secure anything you are good to go, if you leave loopholes then you are delaying the inevitable... Yes new loopholes are always found, but that is why being an IT manager anywhere is a full time job...
________________________________ From: Duane <[email protected]> To: Reza - Voipernetics <[email protected]> Cc: Asterisk Users Group <[email protected]> Sent: Monday, April 16, 2012 1:15:25 AM Subject: Re: [on-asterisk] Polycom SDK to generate & encrypt Polycom config files. On 04/16/12 15:13, Reza - Voipernetics wrote: > Nope! In fact highly insecure, in the sense that should someone have > physical access to the provisioning server, or hard-drive goes missing -- you > are compromising security. When it comes to security and prevention of > international toll fraud, you can't be paranoid enough. > > HTTPS + Userid/Password + RSA Encrypted files (decoded ONLY by the phones) is > more ideal. If they have physical access it's pretty much game over anyway. There is no such thing as perfect security you can only prevent incidental attacks or delay the inevitable. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
