Re: [Astlinux-users] Call Theft again - questions

2010-09-18 Thread Philip Prindeville
ame >> SIP password >> >> ??? >> >> As you know, I was hacked my IP and SIP account, but they were >> unable to get the password. Would a static IP from your cell phone provider >> help with a "guilty unless allowed access" strategy work? &g

Re: [Astlinux-users] Call Theft again - questions

2010-09-18 Thread Mark Phillips
ailto:li...@lonnie.abelbeck.com] > Sent: Saturday, September 18, 2010 9:54 PM > To: AstLinux Users Mailing List > Subject: Re: [Astlinux-users] Call Theft again - questions > > Mark, > > Sorry to hear about the call theft. > > First I'd change all your passwo

Re: [Astlinux-users] Call Theft again - questions

2010-09-18 Thread Chris Abnett
: Saturday, September 18, 2010 9:54 PM To: AstLinux Users Mailing List Subject: Re: [Astlinux-users] Call Theft again - questions Mark, Sorry to hear about the call theft. First I'd change all your passwords, including your provider, with something like the output of: $ openssl rand -base64 2

Re: [Astlinux-users] Call Theft again - questions

2010-09-18 Thread Mark Phillips
t the password. Would a static IP from your cell phone provider > help with a "guilty unless allowed access" strategy work? > >Eric > > -Original Message- > From: Mark Phillips [mailto:g7...@g7ltt.com] > Sent: Saturday, September 18, 2010 8:55 PM > To:

Re: [Astlinux-users] Call Theft again - questions

2010-09-18 Thread Lonnie Abelbeck
Mark, Sorry to hear about the call theft. First I'd change all your passwords, including your provider, with something like the output of: $ openssl rand -base64 21 If you are running the latest AstLinux (0.7.2) there is a firewall plugin "adaptive-ban" that has been demonstrated to deter bru

Re: [Astlinux-users] Call Theft again - questions

2010-09-18 Thread Philip Prindeville
Did you read: http://blogs.digium.com/2009/03/28/sip-security/ and: http://www.asterisk.org/security/webinar/ as well as the file: build_i586/asterisk-1*/README-SERIOUSLY.bestpractices.txt in your project directory. Also, trunk and 1.8 have an important fix that I finally managed to get in

Re: [Astlinux-users] Call Theft again - questions

2010-09-18 Thread eric
; strategy work? Eric -Original Message- From: Mark Phillips [mailto:g7...@g7ltt.com] Sent: Saturday, September 18, 2010 8:55 PM To: AstLinux Users Mailing List Subject: [Astlinux-users] Call Theft again - questions Hi All, Well, for the second time in about a month I've been the

[Astlinux-users] Call Theft again - questions

2010-09-18 Thread Mark Phillips
Hi All, Well, for the second time in about a month I've been the victim of call theft to the tune of almost $1000. It would seem that someone is able to acquire an extension on my AstLinux box and use it to call Somalia for a few minutes at a time over and over again until I catch it. Luckily