[VOIPSEC] Brute forcers
Jonathan K. Creasy
JCreasy at voxitas.com
Fri Mar 13 15:19:28 CDT 2009
Somewhat related, I've been using an app called fail2ban to restrict access to people trying to brute-force logins.
-Jonathan
-----Original Message-----
From: voipsec-bounces at voipsa.org [mailto:voipsec-bounces at voipsa.org] On Behalf Of J. Oquendo
Sent: Friday, March 13, 2009 8:30 AM
To: voipsec at voipsa.org
Subject: [VOIPSEC] Brute forcers
Hey all, if anyone has an interest in hosts that are attempting
brute force logons on IP PBX's shoot me an off list email. I don't
want to clutter the list. Anyhow, if there is interest, I can
generate a list of attackers for "pseudo" public viewing. What I
mean by pseudo is, for those familiar with shadow server, etc, I
don't feel like taking on OC3 amounts of packet kiddiot attacks.
However, for those managing IP PBX's whether its internal or on
a managed level, this month I've seen a huge spike in attacks.
They've gone nowhere, but they are increasing. So maybe an RBL
for PBX's may be nice.
=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+
J. Oquendo
SGFA, SGFE, C|EH, CNDA, CHFI, OSCP
"Enough research will tend to support your
conclusions." - Arthur Bloch
"A conclusion is the place where you got
tired of thinking" - Arthur Bloch
227C 5D35 7DCB 0893 95AA 4771 1DCE 1FD1 5CCD 6B5E
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x5CCD6B5E
_______________________________________________
Voipsec mailing list
Voipsec at voipsa.org
http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
More information about the Voipsec
mailing list