Tod Fitch wrote: > On Dec 1, 2008, at 3:58 PM, Jose Colin wrote: > >> HI. martin. I have seen that you said that if is SIP you should set >> allowguest=no so where does that command should be set ? in arnot >> firewall or where ? i am insterested in put that extra protection an >> havent seen where is the default yes >> >> On Sun, Nov 16, 2008 at 3:51 AM, Martin Rogers >> <[EMAIL PROTECTED]> wrote: >> If you are using SIP you should also be paranoid and set allowguest=no, >> as this defaults to yes. >> >> Mart > > In the default sip.conf is this line: > ;allowguest=no ; Allow or reject guest calls (default is yes) > > But that brings up a question: Don't you need this to be the "yes" (the > default) if you wish to terminate ENUM calls? And if you have the > default SIP context only allow local extensions what would be the > security issue? > As I understand the behaviour of this setting, if you have thought through the security implications of the default context then this setting set =yes should not be a problem. The reason I mentioned it is that I think that a default of yes is dangerous if you are not aware of it, and have not planned your default context accordingly.
Mart ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Astlinux-users mailing list Astlinux-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to [EMAIL PROTECTED]
