I am hardened and had no issues. I just found the fact that it is a real domain with sip on a subdomain that is not published ANYWHERE until a few hours before the attack, which was very limited since I had cps throttled in a way that Mitigated it gracefully, which was all in another post.
While hardening is suggested, and I ALWAYS do, and not really related to my post. Since this is a site dedicated to SIP servers, and a lot of real information is shared in the lists/forums, my question was pointed towards PREVENTION, which is a standard method to MITIGATE. Hardening to me includes mitigation. Harvesting being a CHIEF method used by spammers to identify targets. I won't repeat the question, it is in the first post. ============================ Tony Graziano, Manager Telephone: 434.984.8430 Fax: 434.984.8431 Email: [email protected] LAN/Telephony/Security and Control Systems Helpdesk: Telephone: 434.984.8426 Fax: 434.984.8427 Helpdesk Contract Customers: http://www.myitdepartment.net/gethelp/ ----- Original Message ----- From: [email protected] <[email protected]> To: [email protected] <[email protected]> Sent: Fri Oct 15 06:41:04 2010 Subject: Re: [sipx-users] Mailing lists harvested for sip attacks On 10/15/2010 5:37 AM, Tony Graziano wrote: > It just occurred to me that 4 hours after I posted a sip uri for my lab > system on the list, it was then attacked. > > I am not sure if the list or forum is being harvested though. Does the > forum/mailing list archive have a way to obfuscate sip uri"s (or email > addresses) via javascript? I would think of this as a lesson in hardening your system and a way for all of us to learn. -- Regards -------------------------------------- Gerald Drouillard Technology Architect Drouillard& Associates, Inc. http://www.Drouillard.biz _______________________________________________ sipx-users mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-users/ _______________________________________________ sipx-users mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-users/
