On Fri, 2008-03-21 at 19:44 -0400, Jared Geiger wrote: > From what I remember reading on DSLReports Forums and looking around, > they do use sip and there are ways to extract the credentials if > anything uses SIP.
yes its hashed with md5, and that isnt that hard to brute force, its fairly fast as well. It wouldnt be bad to have a USB FXS supported somewhere, it also wouldnt be bad to have something more official that they wont change. For example if they determine that obtaining the password out of sip headers is a problem, perhaps just because they dont like it, then they could somewhat easily modify their client to get a session password which is used for sip, so in essence it would be rotating and make it harder to use elsewhere. -- Trixter http://www.0xdecafbad.com Bret McDanel Belfast +44 28 9099 6461 US +1 516 687 5200 http://www.trxtel.com the phone company that pays you! _______________________________________________ --Bandwidth and Colocation Provided by http://www.api-digital.com-- asterisk-biz mailing list To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-biz