[VoiceOps] Phone auth for incoming calls?
Ryan Delgrosso
ryandelgrosso at gmail.com
Wed Aug 8 19:21:03 EDT 2018
Step 1: Move everything to TCP (or better yet TLS).
Step 2: Use LetsEncrypt for free perpetual certificates.
Step 3: Profit (and smug superiority over UDP based competitors battling
nat issues).
On 8/8/2018 10:43 AM, Carlos Alvarez wrote:
> Do most of you have the phones authenticate incoming calls? We
> haven't been, but occasionally find a router that has unfiltered full
> cone NAT (Cisco) or that puts one phone on 5060 with no filtering by
> IP. The result is that the phone will start ringing at random as
> script kiddies hit the IP and port 5060 trying to find servers to
> exploit. I don't see a downside to changing to auth, but not having
> done it outside of a few tests of a small number of phones, I figured
> I would ask.
>
>
>
> _______________________________________________
> VoiceOps mailing list
> VoiceOps at voiceops.org
> https://puck.nether.net/mailman/listinfo/voiceops
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/voiceops/attachments/20180808/e9c946cc/attachment.html>
More information about the VoiceOps
mailing list