RE: [Asterisk-Users] Legal Interception - tapping
Archiving calls depends on the definition of archive. When do you actually archive? If the information is stored in a buffer (memory, disk, tape) for technical reasons - do you then archive the call? Of course in general one is not allowed to store the information for a long period on his system (must be instantly forwarded to the authorities). But real-time and semi-real time definitions are pretty close /Dan From: Andrew Joakimsen [EMAIL PROTECTED] Date: Thu, 11 Sep 2003 22:33:00 -0400 I phrased that incorrectly, I have way too much email to look at I know it is possible to record calls, it will record them to a directory you define on the server. But are you required to provide archives/recordings of the calls or permit real-time tapping? _ Stay in touch with absent friends - get MSN Messenger http://www.msn.co.uk/messenger ___ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users
Re: [Asterisk-Users] Legal Interception - tapping
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Friday 12 September 2003 04:33, Andrew Joakimsen wrote: I know it is possible to record calls, it will record them to a directory you define on the server. But are you required to provide archives/recordings of the calls or permit real-time tapping? You should ask some kind of justice department. We did here in Denmark and were told that there currently wasn't officially defined a set of rules about phonetapping but that we should be able to do so if legally requested by law enforcement. These rules will be clearly defined eventually when the government figures out their version of the anti-terror-package. - -- Regards, Tais M. Hansen ComX Networks Tel: +45-70257474 Fax: +45-70257374 -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQE/YYZK2TEAILET3McRAvaDAJ9a8avQeKRqj/5TUzXiE787ppe7SwCaAlfq c+lq1zsFsA6mUow/vFBziao= =p6di -END PGP SIGNATURE- ___ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users
Re: [Asterisk-Users] Legal Interception - tapping
Tais M. Hansen wrote: I know it is possible to record calls, it will record them to a directory you define on the server. But are you required to provide archives/recordings of the calls or permit real-time tapping? You should ask some kind of justice department. We did here in Denmark and were told that there currently wasn't officially defined a set of rules about phonetapping but that we should be able to do so if legally requested by law enforcement. These rules will be clearly defined eventually when the government figures out their version of the anti-terror-package. We're required by ICSTIS to record any live entertainment services that run over our gear. Unfortunately they've not been very helpful regarding requirements - there's merely a single-page document that mentions things like timestamping recordings every 1/2 second to ensure they haven't been tampered with. That doesn't make much sense to me, even in an analogue world, let alone a digital one. FWIW, they require real-time monitoring capability (max 3 second delay) and archives for I think six months (the document doesn't actually specify, would you believe). If anyone has any more information about this, or could point me towards any, I'd be most grateful - ICSTIS' consultant doesn't seem to reply very promptly (if at all) to his e-mails. Regarding the real-time monitoring, it'd be great if we could develop an extension to zapbarge/scan that let you tap in the callerid of the person you're wanting to monitor. It's a little hard to find things in a 120 channel bank sometimes... -- Alastair Maw [EMAIL PROTECTED] MX Telecom - Systems Analyst http://www.mxtelecom.com ___ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users
RE: [Asterisk-Users] Legal Interception - tapping
My 5 cents ... Since the ideal situation would be real-time monitoring then maybe a more effective solution would be to sample/duplicate the packets in the IP layer rather than expecting Asterisk to perform yet another auxiliary function. Cisco like most vendors are in a position were they have to provide Lawful Intercept capabilities within their own (VoIP IP) platforms very quickly to support the new European regulations. As a result of this a new feature will soon be available in Cisco IOS allowing routers (or AS5300's for that matter) to copy all inbound/outbound packets onto another interface or even re-write the destination address providing the capability to 'sniff' all IP (RTP/SIP) packets and route them off to another box. That other box could be another instance of Asterisk dedicated for the purpose or purely a replicated real-time packet stream routed directly to the authorities intercept platforms. -Original Message- From: Andrew Joakimsen [mailto:[EMAIL PROTECTED] Sent: 12 September 2003 04:33 To: [EMAIL PROTECTED] Subject: RE: [Asterisk-Users] Legal Interception - tapping -Original Message- From: [EMAIL PROTECTED] [mailto:asterisk-users- [EMAIL PROTECTED] On Behalf Of Brian West Sent: Thursday, September 11, 2003 10:20 PM To: [EMAIL PROTECTED] Subject: RE: [Asterisk-Users] Legal Interception - tapping pamAssassin 2.55 (1.174.2.19-2003-05-19-exp) issue. If they are using Asterisk is it not possible to record calls automatically. I have not reviews the CALEA requirements, must access be Yes it is very possible to record calls with *. I record all in and outbound calls. bkw I phrased that incorrectly, I have way too much email to look at I know it is possible to record calls, it will record them to a directory you define on the server. But are you required to provide archives/recordings of the calls or permit real-time tapping? ___ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users * DISCLAIMER * This message and any attachment are confidential and may be privileged or otherwise protected from disclosure and may include proprietary information. If you are not the intended recipient, please telephone or email the sender and delete this message and any attachment from your system. If you are not the intended recipient you must not copy this message or attachment or disclose the contents to any other person ___ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users
Re: [Asterisk-Users] Legal Interception - tapping
[snip] Regarding the real-time monitoring, it'd be great if we could develop an extension to zapbarge/scan that let you tap in the callerid of the person you're wanting to monitor. It's a little hard to find things in a 120 channel bank sometimes... -- Alastair Maw [EMAIL PROTECTED] MX Telecom - Systems Analyst http://www.mxtelecom.com You could do this with an AGI script, or simply some ugly System calls. show channels can be parsed to give you caller ID in most cases, and then it would be a matter of creating a menu system to allow selection. You might even consider this in a web interface that creates an outgoing call via the spool mechanism. JT ___ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users
RE: [Asterisk-Users] Legal Interception - tapping
[top-posting madness continued] Instead of making Asterisk do this work, wouldn't it make more sense to just have a smart ethernet sniffer that handled the whole transaction? I have no details on it, but I would guess that the previously-named Carnivore project here in the USA and it's related brethren elsewhere are probably capable of such intercept if they have visibility of all SIP setup and RTP packets. Extracting those features out into a commercial product would not be terribly difficult, and I strongly suspect if I spent a few hours with Google I would find a vendor already selling such a product for an eye-popping sum of money. That being said against modifying Asterisk, here is an agreeing view: Asterisk already has the ability to record specific conversations with fairly simple dialplan logic, as I've demonstrated with my sample files. A clever programmer could modify Dave Troy's ZapScan application to use any channel type, I'm sure, and relay that information out to an alternate channel that turned voice streams to .mp3 codec form to be streamed to some local relay agent (shoutcast, icecast) and from there across a VPN to Langley, Linthicum, or your local sheriff's office. Since Asterisk can record things already, that's a given. With 250gb disks now commonplace, I can fit a terabyte into a 1u PC. Let's see... with GSM files being ~100kb per minute of two-leg conversations, and let's say 1 entire PRI at 50% usage (yes, that's a high Erlang, but this is back-of-napkin) that turns into (very roughly) almost two years of recording of every single conversation on a PRI. I'm sure someone could make a tidy sum of money deploying this type of system, even if they gave the modifications back to the community as per the GPL license as they are obligated to do if it becomes a resold product. A T400P card in a good-quality rackmount PC (total cost for both, with a terabyte of disk: ~$5200) could become a completely transparent monitoring system that could be inserted at the carrier's office or even closer, and the subscriber to the PRI would never know it was there. As long as there was Internet access somehow, this could be monitored and commanded remotely. Law enforcement is always willing to pay good money to technical firms to install stuff, even if it's open-source. In short: Asterisk is already an almost-ideal call recording platform with no modifications. With few modifications, it could easily work as a live intercept system with incredible flexibility. (PS: I am a consultant, so any law enforcement agencies reading this should feel free to shower me with money.) (PPS: Ethical note - I am a big fan of strong crypto, individual rights, and a rollback of many of the current basic rights encroachments that have occurred in the recent years in the US (and even in the EU.) However, I also recognize the completely legitimate and necessary use of wiretaps in circumstances that are legally warranted, and I believe that law enforcement should use every tool that they are legally allowed.) JT My 5 cents ... Since the ideal situation would be real-time monitoring then maybe a more effective solution would be to sample/duplicate the packets in the IP layer rather than expecting Asterisk to perform yet another auxiliary function. Cisco like most vendors are in a position were they have to provide Lawful Intercept capabilities within their own (VoIP IP) platforms very quickly to support the new European regulations. As a result of this a new feature will soon be available in Cisco IOS allowing routers (or AS5300's for that matter) to copy all inbound/outbound packets onto another interface or even re-write the destination address providing the capability to 'sniff' all IP (RTP/SIP) packets and route them off to another box. That other box could be another instance of Asterisk dedicated for the purpose or purely a replicated real-time packet stream routed directly to the authorities intercept platforms. -Original Message- From: Andrew Joakimsen [mailto:[EMAIL PROTECTED] Sent: 12 September 2003 04:33 To: [EMAIL PROTECTED] Subject: RE: [Asterisk-Users] Legal Interception - tapping -Original Message- From: [EMAIL PROTECTED] [mailto:asterisk-users- [EMAIL PROTECTED] On Behalf Of Brian West Sent: Thursday, September 11, 2003 10:20 PM To: [EMAIL PROTECTED] Subject: RE: [Asterisk-Users] Legal Interception - tapping pamAssassin 2.55 (1.174.2.19-2003-05-19-exp) issue. If they are using Asterisk is it not possible to record calls automatically. I have not reviews the CALEA requirements, must access be Yes it is very possible to record calls with *. I record all in and outbound calls. bkw I phrased that incorrectly, I have way too much email to look at I know it is possible to record calls, it will record them to a directory you define on the server. But are you required
[Asterisk-Users] Legal Interception - tapping
Hi, Companies that offer telephone service to the public are obliged to offer tapping to all kind of authorities. Does anyone know how to tap in Asterisk? I.e. record (or copy) a conversation based upon their telephone number? Thanks Dan _ Stay in touch with absent friends - get MSN Messenger http://www.msn.co.uk/messenger ___ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users
Re: [Asterisk-Users] Legal Interception - tapping
Hi, Citeren Dan Tusa [EMAIL PROTECTED]: Companies that offer telephone service to the public are obliged to offer tapping to all kind of authorities. Does anyone know how to tap in Asterisk? I.e. record (or copy) a conversation based upon their telephone number? Asterisk can record arbitrary channels to gsm or wav files. However, most countries require specific protocols surrounding the lawfull intercept to make sure that no-one was able to tamper with the digital recordings. AFAIK Asterisk has no means to support those protocols at this time. -- Best regards, Florian Overkamp ___ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users
RE: [Asterisk-Users] Legal Interception - tapping
So, you're providing public telephone service with *? -Original Message- From: Dan Tusa [EMAIL PROTECTED] Date: Thu, 11 Sep 2003 20:05:56 +0100 To: [EMAIL PROTECTED] [EMAIL PROTECTED] Subject: [Asterisk-Users] Legal Interception - tapping Hi, Companies that offer telephone service to the public are obliged to offer tapping to all kind of authorities. Does anyone know how to tap in Asterisk? I.e. record (or copy) a conversation based upon their telephone number? Thanks Dan _ Stay in touch with absent friends - get MSN Messenger http://www.msn.co.uk/messenger ___ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users ___ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users
Re: [Asterisk-Users] Legal Interception - tapping
On Thu, 2003-09-11 at 14:05, Dan Tusa wrote: Hi, Companies that offer telephone service to the public are obliged to offer tapping to all kind of authorities. Does anyone know how to tap in Asterisk? I.e. record (or copy) a conversation based upon their telephone number? Wouldn't this be possible for your provider to do for you? It would seem that you would be buying service from some larger telecom and they already have to meet those functions. So wouldn't it be possible to shift it to them, especially if all your traffic for any specific customer always crossed a specific telecom? -- Steven Critchfield [EMAIL PROTECTED] ___ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users
Re: [Asterisk-Users] Legal Interception - tapping
At 3:06 PM -0500 9/11/03, Steven Critchfield wrote: On Thu, 2003-09-11 at 14:05, Dan Tusa wrote: Hi, Companies that offer telephone service to the public are obliged to offer tapping to all kind of authorities. Does anyone know how to tap in Asterisk? I.e. record (or copy) a conversation based upon their telephone number? Wouldn't this be possible for your provider to do for you? It would seem that you would be buying service from some larger telecom and they already have to meet those functions. So wouldn't it be possible to shift it to them, especially if all your traffic for any specific customer always crossed a specific telecom? -- Steven Critchfield [EMAIL PROTECTED] Consider this case, though: CLEC-R-Us, Inc. has a class 5 switch, and provides local and LD service to customers. They comply with all relevant laws regarding CALEA and recording on their switch system. CLEC-R-Us also offers DSL services and Internet access. CLEC-R-Us offers a special rate when your business gets service and you also buy service for all your employees in the same region: free calling between employees and the business, and even free inbound calls from the outside world to each of those locations, all using VoIP. CLEC-R-Us uses Asterisk to terminate a PRI from their switch for inbound/outbound calls. So far so good... almost. The CALEA requirements can be handled (probably) for inbound calls from the PSTN by existing methods. BUT: What happens when the FBI comes in and asks for recordings of calls between Customer A (VoIP) and Customer C (VoIP) which aren't touching the Class 5 switch at all, because they're looped between each other through Asterisk or (worse yet!) the RTP data doesn't even go through CLEC-R-Us at all? Whoops. Suddenly, CLEC-R-Us is out of compliance, and Mr. FBI-Guy is doing a lot of frowning and mentioning words like FCC and injunction on the cell phone to his legal department. A possible ugly way to handle this is to not actually terminate any VoIP-to-VoIP calls to each other directly, but send them all out a PRI into the Class 5 switch, and loop it right back out to the Asterisk server on another PRI channel. Yuck. Another possible way to handle this is to not be a CLEC that has the burden of those legal requirements. Wait until ENUM and/or TRIP makes this kind of dialing ubiquitous, such that it does not even require a CLEC of any kind of intermediate provider. Whoa, Nelly! I hope you folks at various government agencies have an army of technical people in the field with DSL/cable/optical sniffers, since that's where all this tapping is going to have to be done. The law is far behind these advances, and the more observant (but reactionary) legislators will soon get wind of this and promptly think they can control the setting of the sun and the movement of the tides with new laws. I won't even go into open-source crypto for RTP sessions; that's another hysteria waiting to happen. Your mileage may vary, I am not a lawyer, etc. JT ___ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users
RE: [Asterisk-Users] Legal Interception - tapping
-Original Message- From: [EMAIL PROTECTED] [mailto:asterisk-users- [EMAIL PROTECTED] On Behalf Of John Todd Sent: Thursday, September 11, 2003 4:33 PM To: [EMAIL PROTECTED] Subject: Re: [Asterisk-Users] Legal Interception - tapping At 3:06 PM -0500 9/11/03, Steven Critchfield wrote: On Thu, 2003-09-11 at 14:05, Dan Tusa wrote: Hi, Companies that offer telephone service to the public are obliged to offer tapping to all kind of authorities. Does anyone know how to tap in Asterisk? I.e. record (or copy) a conversation based upon their telephone number? Wouldn't this be possible for your provider to do for you? It would seem that you would be buying service from some larger telecom and they already have to meet those functions. So wouldn't it be possible to shift it to them, especially if all your traffic for any specific customer always crossed a specific telecom? -- Steven Critchfield [EMAIL PROTECTED] Consider this case, though: CLEC-R-Us, Inc. has a class 5 switch, and provides local and LD service to customers. They comply with all relevant laws regarding CALEA and recording on their switch system. CLEC-R-Us also offers DSL services and Internet access. CLEC-R-Us offers a special rate when your business gets service and you also buy service for all your employees in the same region: free calling between employees and the business, and even free inbound calls from the outside world to each of those locations, all using VoIP. CLEC-R-Us uses Asterisk to terminate a PRI from their switch for inbound/outbound calls. So far so good... almost. The CALEA requirements can be handled (probably) for inbound calls from the PSTN by existing methods. BUT: What happens when the FBI comes in and asks for recordings of calls between Customer A (VoIP) and Customer C (VoIP) which aren't touching the Class 5 switch at all, because they're looped between each other through Asterisk or (worse yet!) the RTP data doesn't even go through CLEC-R-Us at all? Whoops. Suddenly, CLEC-R-Us is out of compliance, and Mr. FBI-Guy is doing a lot of frowning and mentioning words like FCC and injunction on the cell phone to his legal department. And that is the whole issue regarding VoIP. How are Customer A and Customer C connecting to each other? If they decided to setup their own Asterisk servers to talk with each other, CLEC-R-Us would not be involved. But if they are going through CLEC-R-Us then there would be an issue. If they are using Asterisk is it not possible to record calls automatically. I have not reviews the CALEA requirements, must access be provided in realtime, or would recording suffice? ___ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users
RE: [Asterisk-Users] Legal Interception - tapping
issue. If they are using Asterisk is it not possible to record calls automatically. I have not reviews the CALEA requirements, must access be Yes it is very possible to record calls with *. I record all in and outbound calls. bkw ___ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users
RE: [Asterisk-Users] Legal Interception - tapping
-Original Message- From: [EMAIL PROTECTED] [mailto:asterisk-users- [EMAIL PROTECTED] On Behalf Of Brian West Sent: Thursday, September 11, 2003 10:20 PM To: [EMAIL PROTECTED] Subject: RE: [Asterisk-Users] Legal Interception - tapping pamAssassin 2.55 (1.174.2.19-2003-05-19-exp) issue. If they are using Asterisk is it not possible to record calls automatically. I have not reviews the CALEA requirements, must access be Yes it is very possible to record calls with *. I record all in and outbound calls. bkw I phrased that incorrectly, I have way too much email to look at I know it is possible to record calls, it will record them to a directory you define on the server. But are you required to provide archives/recordings of the calls or permit real-time tapping? ___ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users