[asterisk-users] security on localhost connections
Asterisk Users - We are presently try to operate a hybrid GSM/Asterisk cellular basestation at the Burning Man Festival in the Nevada desert. (See http://openbts.sourceforge.net). The architecture is basically one where cell phones are presented to Asterisk as SIP users, using the IMSI as the SIP user ID for convenience. (It's running off of a wind turbine is the middle of a dust storm as my alkali-abused hands type this.) When we first got this system running, we were getting hammered with service requests from phones that people left turned on. We tried sending the magic GSM codes for no roaming here, but some of them just kept coming back. It was like a denial of service attack. We figured out that the best way to shut those phones up was just to accept their registrations. We'd send a corresponding SIP registration to Asterisk, that would fail, but we'd report success to the GMS handset anyway so that it would think it had service and stop retrying the registration. Now we've discovered a new problem: Asterisk lets these non-existent make calls even though they are not listed as users in sip.conf. We suspect that is happening because they are all localhost connections, and therefore bypassing some kind of authentication check. These calls also show up in the CDR, but with the SIP ids of real, provisioned SIP users instead of the IMSIs of the phones that are actually making the calls. Any ideas how this is happening or how to fix it? -- David David A. Burgess Kestrel Signal Processing, Inc. ___ -- Bandwidth and Colocation Provided by http://www.api-digital.com -- AstriCon 2008 - September 22 - 25 Phoenix, Arizona Register Now: http://www.astricon.net asterisk-users mailing list To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users
Re: [Asterisk-Users] Crazy stuff in latest CVS HEAD
Maybe it is not just me going crazy. I have garbled audio based on July 17. And I thought it was me messing up the ztdummy setup. David Burgess On 7/19/05, Steve Hsieh [EMAIL PROTECTED] wrote: Noah, I've encountered the same problem (same negative timestamp log messages, and garbled audio). The last version of CVS HEAD that worked on my system without any problems was July 4... Steve On 7/18/05, Noah Miller [EMAIL PROTECTED] wrote: Hi - I've just been testing out the latest CVS HEAD (as of about 10:00a EDT today). I'm getting some weird errors. Calls from one sip phone to another have OK audio in one direction and highly scrambled audio in the other direction. The console shows this error repeated ad nauseum during each call: Jul 18 16:08:03 ERROR[22941]: utils.c:509 tvfix: warning negative timestamp -93136.-389875 I noticed some minor changes to utils.c on the cvs list. I also know that this is the major bug shakedown period before the 1.2 release, but maybe I've done something wrong and somebody has seen this error before? Anybody? Strangely, calls going out over an IAX forward work just fine. - Noah ___ Asterisk-Users mailing list Asterisk-Users@lists.digium.com http://lists.digium.com/mailman/listinfo/asterisk-users To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users ___ Asterisk-Users mailing list Asterisk-Users@lists.digium.com http://lists.digium.com/mailman/listinfo/asterisk-users To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users
Re: [Asterisk-Users] ztdummy (again)
Zoltan Szecsei wrote: David Burgess wrote: Matt Riddell wrote: David Burgess wrote: Hi, I am new to the list. I have just *re*-installed and rebuilt asterisk from the head branch and I am left with the problem that the sound bounces around. When installing zaptel I get the following message from ztcfg. Lastest head and fedora 2.6.11-1.35_FC3 Yes. BTB I had no problem in this working with the V1-0 release. So, you'd be running UDEV then... Yes modprobe -v ztdummy install /sbin/modprobe --ignore-install ztdummy /sbin/ztcfg insmod /lib/modules/2.6.11-1.35_FC3/misc/ztdummy.ko ZT_CHANCONFIG failed on channel 1: No such device or address (6) FATAL: Error running install command for ztdummy Don't forget you need to edit the rules and permission files for udev. The info is in /usr/src/zaptel/README.udev Yes. I have done this and found that the latest makefile (I think) updates these for you. Anyway whats in rules and environment looks OK. I have checked on /dev/zap and /dev/zaptel and they seem OK. This has me stumped. ___ Asterisk-Users mailing list Asterisk-Users@lists.digium.com http://lists.digium.com/mailman/listinfo/asterisk-users To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users Hi, I know you said that you've just *re*-installed, implying that there have been no HW changes, but I do know that ztdummy does not co-exist with certain other modules needed for certain HW (eg: zaphfc for pci ISDN BRI cards). No BRI, Maybe give this list a full config and then someone with more experience than me could help. Cheers, Zoltan Intel D815EA, Pentium 3, ~800Mhz, 512Mb Memory, SCSI 2940U2 Onboard Video, sound. # uname -r 2.6.11-1.35_FC3 The history is that I installed Asterisk a fortnight ago from v1-0, got over the udev hassle did the ztdummy fix and it all worked with IAX via asterisk. (Using IAXComm clients). Deleted the lot (keeping copies of the asterisk and zaptel setup) and repeated the process with head. DB -- == Geograph (Pty) Ltd P.O. Box 31255 Tokai 7966 Tel:+27-21-7018492 Fax:+27-86-6115323 Mobile: +27-83-6004028 == ___ Asterisk-Users mailing list Asterisk-Users@lists.digium.com http://lists.digium.com/mailman/listinfo/asterisk-users To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users
Re: [Asterisk-Users] Crazy stuff in latest CVS HEAD
I am new to this list. What is the process of reporting something that is completely busted? Or do we just patiently wait? On 7/19/05, Chris Stenton [EMAIL PROTECTED] wrote: I'm also getting a lot of the following sip messages as well under FreeBSD. sip_xmit of 0x87fb01c (len 507) to 192.168.123.94 returned -1: Address family not supported by protocol family - Original Message - From: Steve Hsieh [EMAIL PROTECTED] To: Asterisk Users Mailing List - Non-Commercial Discussion asterisk-users@lists.digium.com Sent: Tuesday, July 19, 2005 9:09 AM Subject: Re: [Asterisk-Users] Crazy stuff in latest CVS HEAD Noah, I've encountered the same problem (same negative timestamp log messages, and garbled audio). The last version of CVS HEAD that worked on my system without any problems was July 4... Steve On 7/18/05, Noah Miller [EMAIL PROTECTED] wrote: Hi - I've just been testing out the latest CVS HEAD (as of about 10:00a EDT today). I'm getting some weird errors. Calls from one sip phone to another have OK audio in one direction and highly scrambled audio in the other direction. The console shows this error repeated ad nauseum during each call: Jul 18 16:08:03 ERROR[22941]: utils.c:509 tvfix: warning negative timestamp -93136.-389875 I noticed some minor changes to utils.c on the cvs list. I also know that this is the major bug shakedown period before the 1.2 release, but maybe I've done something wrong and somebody has seen this error before? Anybody? Strangely, calls going out over an IAX forward work just fine. - Noah ___ Asterisk-Users mailing list Asterisk-Users@lists.digium.com http://lists.digium.com/mailman/listinfo/asterisk-users To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users ___ Asterisk-Users mailing list Asterisk-Users@lists.digium.com http://lists.digium.com/mailman/listinfo/asterisk-users To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users ___ Asterisk-Users mailing list Asterisk-Users@lists.digium.com http://lists.digium.com/mailman/listinfo/asterisk-users To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users
[Asterisk-Users] ztdummy (again)
Hi, I am new to the list. I have just *re*-installed and rebuilt asterisk from the head branch and I am left with the problem that the sound bounces around. When installing zaptel I get the following message from ztcfg. Lastest head and fedora 2.6.11-1.35_FC3 modprobe -v ztdummy install /sbin/modprobe --ignore-install ztdummy /sbin/ztcfg insmod /lib/modules/2.6.11-1.35_FC3/misc/ztdummy.ko ZT_CHANCONFIG failed on channel 1: No such device or address (6) FATAL: Error running install command for ztdummy Any ideas? David Burgess ___ Asterisk-Users mailing list Asterisk-Users@lists.digium.com http://lists.digium.com/mailman/listinfo/asterisk-users To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users
Re: [Asterisk-Users] ztdummy (again)
Matt Riddell wrote: David Burgess wrote: Hi, I am new to the list. I have just *re*-installed and rebuilt asterisk from the head branch and I am left with the problem that the sound bounces around. When installing zaptel I get the following message from ztcfg. Lastest head and fedora 2.6.11-1.35_FC3 Yes. BTB I had no problem in this working with the V1-0 release. So, you'd be running UDEV then... Yes modprobe -v ztdummy install /sbin/modprobe --ignore-install ztdummy /sbin/ztcfg insmod /lib/modules/2.6.11-1.35_FC3/misc/ztdummy.ko ZT_CHANCONFIG failed on channel 1: No such device or address (6) FATAL: Error running install command for ztdummy Don't forget you need to edit the rules and permission files for udev. The info is in /usr/src/zaptel/README.udev Yes. I have done this and found that the latest makefile (I think) updates these for you. Anyway whats in rules and environment looks OK. I have checked on /dev/zap and /dev/zaptel and they seem OK. This has me stumped. ___ Asterisk-Users mailing list Asterisk-Users@lists.digium.com http://lists.digium.com/mailman/listinfo/asterisk-users To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users