similar to: NEW Asterisk Security vulnerability report ...

Hello, today I found this security report regarding Asterisk SIP Security. http://www.securiteam.com/securitynews/5LP0720B5G.html Maybe It could help somebody who isn't using a newer than 15th of August cvs version. Best regards Lubo

In the process of investigating a Cisco ATA 186 that was locked by Vonage, I found that you can still unlock the device yourself. But there's a catch. The device's design has a great plus: a DIP32 *socketed* SST28SF040A flash chip. I found an 8 digit unlock code at 0x03FA71-0x03FA78. I do not know if that is a standard location. If you have the equipment, you're in luck. But

I have a box behind a firewall that I'd like to administer. The firewall allows outgoing connections, but blocks all incoming connection requests. Thus, behind the firewall I can ssh out to my server, but I can't do the reverse. I found Sebastian Krahmer's OpenSSH Reverse [1] which looks very promising, but it is a few revisions behind. I was wondering if anyone has considered

Hi, See below: # getent group adm adm:x:4:root,adm,daemon And: # ls -l /var/log total 20384 -rw-r----- 1 root adm 43310 Jun 21 16:00 auth.log -rw-r----- 1 root adm 128247 Jun 19 06:47 auth.log.0 -rw-r----- 1 root adm 10318 Jun 12 06:47 auth.log.1.gz -rw-r----- 1 root adm 9508 Jun 5 06:47 auth.log.2.gz -rw-r----- 1 root adm 12475 May 29 06:47 auth.log.3.gz

Several people have noticed that SecuriTeam.com is reporting a "FreeBSD ECE flag ipfw protection bypass" exploit. In an effort to save time, let me say this publicly: SecuriTeam.com is three years out of date. This problem was fixed in FreeBSD 3.5-STABLE and 4.2-STABLE in January 2001, and reported in Security Advisory FreeBSD-SA-01:08. Colin Percival

FYI I verified this on a working system. ----- Forwarded message from 0x721427D8 0x721427D8 <0x721427d8@gmail.com> ----- Date: Sun, 10 Jun 2012 15:02:43 +0200 From: 0x721427D8 0x721427D8 <0x721427d8@gmail.com> To: bugtraq@securityfocus.com Subject: [php<=5.4.3] Parsing Bug in PHP PDO prepared statements may lead to access violation [php<=5.4.3] Parsing Bug in PHP PDO

Hello, after upgrading my asterisk from cvs few days ago I discovered that all my anddefault asterisk voice messages/prompts was played wrong - they was played so slowly ... and the IVR system wasn't usable at all. Today I upgraded everything: a fresh cvs copy, made make install and make samples - but after that the problem with IVR was the same: ALL default asterisk sounds in gsm format

Is it possible to restrict the number of concurrent calls made to a SIP peer? Or maybe the number of concurrent calls made to a particular extension. This way I can avoid asterisk trying to make more voice calls to my remote SIP gateway then I have bandwidth to handle. /davidh

Hello every one, I have got a H323 gatekeeper for testing. The informations are something like this: account code: test01 gk ip address:192.168.10.12 I don't know how to set it in the h323.conf or oh323.conf, I have tried it for almost one day but I always got the error. Help me please. Regards. -------------- next part -------------- An HTML attachment was scrubbed... URL:

Today class we are going to be talking about the wonderful line of GrandStream products. Or should I say BarbieTone phones? Who else is having MAJOR issues with the grandstream products? How many times have you been told upgrade upgrade upgrade? How many of you have paperweights, granted the phone is light as a feather and couldn't weight papers down in the first place? How about that

The basic idea of tattle (http://www.securiteam.com/tools/5JP0520G0Q.html) is that it will go through your /var/logs/messages to find brute force attack attempts on your machine via ssh. It then looks up the abuse records and emails the network owners about the attack. It worked well until the log format changed a little when I updated last and it broke. So, as an exercise in learning ruby and

Hi Everybody, I am new to Asterisk. Can anybody suggest me some link where I can find architecture level detail of this system. My aim is to find out how easy it is to port it on a new hardware (T1/E1 and POTS)? Any input is highly appreciated. Regards Arun

OpenSSH 8.1 has just been released. It will be available from the mirrors listed at http://www.openssh.com/ shortly. OpenSSH is a 100% complete SSH protocol 2.0 implementation and includes sftp client and server support. Once again, we would like to thank the OpenSSH community for their continued support of the project, especially those who contributed code or patches, reported bugs, tested

Hello, after upgrading my asterisk from cvs few days ago I discovered that all my voice messages/prompts was played wrong (a bit funny) - they was played so slowly ... and the IVR system wasn't usable at all. Today I upgraded everything: a fresh cvs copy, made make install and make samples - ..oooo where are my configs gone .. :)) but after that the problem with IVR was the same: all