Welcome to the Frontpage - Cyber-Cottage.co.uk

header image

Latest News
We are now an authorised Gigaset pro Reseller Gigaset Rugged Handset How to complete the "Keep My Number" porting form Gradwell Approved Professional EFM Leased lines

Visitors: 4895576

Checking Trunk registrations

We got a call today from a customer who uses skype trunks for some international incoming numbers. We have found that these lose registration on a regular basis, We could let them be set try and register indefinitely but this can have performance effects on the server.

This is not our only customer with this problem, We have also of late noticed a similar problem with Voip-unlimited where registration times out every day at 8pm, we have noted this on ours and other dealers servers.

So what to do?

Well we have written a quick script to check registration details and reload if not correct.

Brute force SIP attacks

Over recent month many users are finding they are suffereing from brute force attacks from servers in Romania and more worryingly from "servers" in the Amazon cloud.

http://www.stuartsheldon.org/blog/2010/ ... ec2-hosts/ and many other posts have more details and Amazons poor response to this attack.

These attacks are also causing poor sound quality and many other QOS issues.

What can you do to protect yourself....

Make sure you have ACLs setup if you can and most importantly use STRONG passwords. , dont use 1234 use nergt32uy5ue9n also keep an eye on your logs and keep the firewall or IP tables upto date.

Also make sure your sip.conf file is set correctly, Make sure your have

alwaysauthreject=yes

and also make sure that the default context in the sip.conf is very restricted, no disa entries and no options to dialout.

You can also manually set your iptables firewall to block known hosts that are attacking, but this can be very labour intensive so setting a script or fail2ban to do it for you is a much better alternative.

On our customer servers we have a script running that keeps iptables updated blocking rogue servers after a couple of attempts.

It also is imporant to keep your call baring uptodate. We resell Gradwell services this means you can block numbers at their servers as well as your own.

Tweet your Asterisk Voicemail notification

UPDATED

You cant get away from it, Twitter that is, Everyone is either tweeting or writing about tweeting, Just sticking twitter into search on the BBC website and you will get over 500 unique results from the BBC alone. Stephen Fry has over a million followers ! .

So I thought that there must be something else that this could be used for, And it came to me "Asterisk Voicemail Notification" Obviously you don't want everyone to know you have a voicemail (Well I hope not) but this is easily solved by creating a private account for the server that only selected followers can see, and then send the notifications as "Direct Messages", Easy I thought and to be honest it was.

Then Twitter up'd their game by introducing oauth, This added a extra level of complication.

but now I am posting details of a way to Tweet notifications using Oauth

More...

Better Sip Security

<< Start < Previous 1 2 3 4 5 6 7 8 9 10 Next > End >>

Results 5 - 8 of 44

Sip attacks are on the increase, Read or article on Sip security and look at the ITSPA document as well to make sure you are secure

Technical Notes

System Monitoring

ATOM 1.0

OPML

We have 33 guests online

Mambo is Free Software released under the GNU/GPL License.