Re: VOIP Security

From: arif.jatmoko@sea.ccamatil.com
Date: Fri Sep 23 2005 - 00:17:27 EDT

• Next message: Craig Wright: "MSFT Bans insecure hashes - was"Passwords with Lan Manager (LM) under Windows""
• Previous message: George: "Fed up with high American Pharmacy costs?"
• Maybe in reply to: Alvin: "VOIP Security"
• Next in thread: Hayes, Ian: "RE: VOIP Security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

What kind of VOIP protocol do you have ? The most common are H.323 and SIP
where each of has own specific vulnerabilities.

Cheers,
Arif Jatmoko
|+----------------+----------------------------------|
|| "Alvin" | |
|| <alvind12@ftm|         To: |
|| l.net> | pen-test@securityfocus.com |
|| |         cc:        (bcc: Arif |
|| 09/22/2005 | Jatmoko/IDN/SEA/CCA) |
|| 11:16 AM |         Subject:        VOIP |
|| | Security |
|| | |
|+----------------+----------------------------------|

List,

What can be the security implication if I bypassed firewall for VOIP
traffic and directly route it from router to PABX.

Assuming - This VOIP traffic is coming from trusted partner's network
but I dont have any control on thier nework at this point of time.

Comments and Suggestions willl be appreciated !!!

Regards
Al

--
 Alvin
 alvind12@ftml.net
--
http://www.fastmail.fm - Access your email from home and the web
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:
Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers
are
futile against web application hacking. Check your website for
vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers
do!
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 
Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

• Next message: Craig Wright: "MSFT Bans insecure hashes - was"Passwords with Lan Manager (LM) under Windows""
• Previous message: George: "Fed up with high American Pharmacy costs?"
• Maybe in reply to: Alvin: "VOIP Security"
• Next in thread: Hayes, Ian: "RE: VOIP Security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:59 EDT