[asterisk-users] is encrypted iax safe and secure?

2008-02-05 Thread Cavalera Claudio Luigi
Hello, I'm doing some research concerning iax encryption, I haven't find any clients (softphones or hardphones) which implement so I have not tested it yet. There was also this message on asterisk-security mailing list http://archives.free.net.ph/message/20070507.101933.222987b2.en.html which got

Re: [asterisk-users] is encrypted iax safe and secure?

2008-02-06 Thread Tilghman Lesher
On Tuesday 05 February 2008 09:22:29 Cavalera Claudio Luigi wrote: > Hello, > I'm doing some research concerning iax encryption, I haven't find any > clients (softphones or hardphones) which implement so I have not tested > it yet. > > There was also this message on asterisk-security mailing list >

Re: [asterisk-users] is encrypted iax safe and secure?

2008-02-07 Thread Tim Panton
On 7 Feb 2008, at 00:36, Tilghman Lesher wrote: > On Tuesday 05 February 2008 09:22:29 Cavalera Claudio Luigi wrote: >> Hello, >> I'm doing some research concerning iax encryption, I haven't find any >> clients (softphones or hardphones) which implement so I have not >> tested >> it yet. >> >>

Re: [asterisk-users] is encrypted iax safe and secure?

2008-02-13 Thread Cavalera Claudio Luigi
[EMAIL PROTECTED] wrote: > > Is it important for you to conceal that a call was made from > abc to xyz on > thus-and-such a date? Or do you merely need to conceal the > content of a > call? I was thinking about concealing called and calling number in a generic iax2 call, I hadn't even thinked

Re: [asterisk-users] is encrypted iax safe and secure?

2008-02-15 Thread Kevin P. Fleming
Tim Panton wrote: > The NEW frame doesn't _have_ to contain a dialed number, the digits > can be sent later > (I forget the frametype), but later means within the encrypted > session :-) It's the DIAL command that you are thinking of. I'm considering implementing this, but it has one major ca

Re: [asterisk-users] is encrypted iax safe and secure?

2008-02-15 Thread Steve Johnson
Of course *it would be nice if* the IAX2 authentication parameters were also encrypted, so that there was no danger of a 3rd party hijacking your connection and generating a bunch of extra charges. S. On Fri, Feb 15, 2008 at 11:31 AM, Kevin P. Fleming <[EMAIL PROTECTED]> wrote: > Tim Panton wrote

Re: [asterisk-users] is encrypted iax safe and secure?

2008-02-18 Thread Kevin P. Fleming
Steve Johnson wrote: > Of course *it would be nice if* the IAX2 authentication parameters > were also encrypted, so that there was no danger of a 3rd party > hijacking your connection and generating a bunch of extra charges. Can you elaborate? I don't see any way that a connection can be 'hijacked

Re: [asterisk-users] is encrypted iax safe and secure?

2008-02-18 Thread Cavalera Claudio Luigi
> -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of > Kevin P. Fleming > Sent: Monday, February 18, 2008 4:13 PM > To: Asterisk Users Mailing List - Non-Commercial Discussion > Subject: Re: [asterisk-users] is encrypted iax safe a