On Thu, 2009-08-06 at 13:03 +0200, Peter Selc wrote: > If I leave standard port, it can be easily scanned by some robot. DDOS > won't hurt so much, but if attacker manages to register, then he can > make outbound calls and if I find it out too late, we can receive high > bills. Is it possible to use SRTP / TLS if phone supports it? Or are > there any other suggestions how to increase security?
Michael is right - changing the port is just the illusion of security. You should assume that any port you use _will_ be found. As long as any call to the PSTN requires some permission, an attacker needs to be able to guess the password of a user with that permission. See: http://sipx-wiki.calivia.com/index.php/Securing_Calls_to_the_PSTN _______________________________________________ sipx-users mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-users Unsubscribe: http://list.sipfoundry.org/mailman/listinfo/sipx-users sipXecs IP PBX -- http://www.sipfoundry.org/
