On Apr 11, 2008, at 1:56 PM, Ben Campbell wrote: > > > ( I am curious what existing PSTN voice mail systems would do if > someone else called my voicemail and spoofed my caller ID). >
Until several years ago, US voice mail systems were typically set up to not require PIN number entry when the caller ID matched the voice mail account. http://www.geek.com/t-mobile-and-verizon-voicemail-open-to-caller-id-spoofing/ After a couple of high profile message compromise cases (if I remember right, somebody used a caller-ID spoof to retrieve Paris Hilton's voice mail, or maybe it was some other celeb's voicemail after Paris lost her Sidekick and the phone book was compromised), most of the providers reset the defaults to require PIN entry. http://www.engadget.com/2005/02/20/paris-hiltons-hacked-sidekick-releases-unedited-tell-all/ http://www.computerworld.com/securitytopics/security/hacking/story/0,10801,99934,00.html I think at least one carrier has gotten a workaround in place to user caller-ID as an authenticator, but only when the call is originating from a mobile in their network and they've handled the GSM authentication themselves. -- Dean _______________________________________________ Sip mailing list https://www.ietf.org/mailman/listinfo/sip This list is for NEW development of the core SIP Protocol Use [EMAIL PROTECTED] for questions on current sip Use [EMAIL PROTECTED] for new developments on the application of sip
