On Tue, Sep 4, 2012 at 5:53 PM, Mike Copeland <[email protected]> wrote: > I have a client that had their VOIP service hacked this past weekend. > The VOIP vender has been stymied as to how it happened and doesn't have > any idea where to turn or what to do. The VOIP vendor is a small > independent guy, like us, just trying to make a living. > > Does anyone have any resources...books, articles, website...to recommend > on how to set up, check out, configure security on a VOIP configuration? > He's using Samsung hardware which runs a flavor of Linux. > > Any advice appreciated. > > Mike Copeland
First - what do you mean by 'hacked'? Do you KNOW someone was in there, is the thing reformatted or something, or is the thing FUBAR and VOIP dude can't explain it so he thinks it must have been hacked? Check the access logs on the machine/device that is the most forward facing port i.e. the access point. If you can narrow down the time of attack it will help sift through the volume of info in the logs. Ted can prolly tell you exactly the name of the file (it escapes me at the moment - been a while since I did Linux sys admin)... The log will show you the (alleged) IP from the system that logged in assuming that was the method of attack). You can then ping/tracert/whois the IP address for info, which may or may not be real or usable - but it's somewhere to start. If they did damage you can contact the FBI but be warned they will seize the machine most likely and you may see it before the end of the century... Check the logs and go from there... -- Matt Jarvis Eugene, Oregon USA _______________________________________________ Post Messages to: [email protected] Subscription Maintenance: http://leafe.com/mailman/listinfo/profox OT-free version of this list: http://leafe.com/mailman/listinfo/profoxtech Searchable Archive: http://leafe.com/archives/search/profox This message: http://leafe.com/archives/byMID/profox/capt54rbdtso3-+vxg9jykv8b4bvydxucna9mm_zau-vkfre...@mail.gmail.com ** All postings, unless explicitly stated otherwise, are the opinions of the author, and do not constitute legal or medical advice. This statement is added to the messages for those lawyers who are too stupid to see the obvious.
