Penetration Testing mailing list archives

Re: VOIP Security

From: arif.jatmoko () sea ccamatil com
Date: Fri, 23 Sep 2005 11:17:27 +0700




What kind of VOIP protocol do you have ? The most common are H.323 and SIP
where each of has own specific vulnerabilities.

Cheers,
Arif Jatmoko
|+----------------+----------------------------------|
||   "Alvin"      |                                  |
||   <alvind12@ftm|           To:                    |
||   l.net>       |   pen-test () securityfocus com     |
||                |           cc:        (bcc: Arif  |
||   09/22/2005   |   Jatmoko/IDN/SEA/CCA)           |
||   11:16 AM     |           Subject:        VOIP   |
||                |   Security                       |
||                |                                  |
|+----------------+----------------------------------|








List,

What can be the security implication if I bypassed firewall for VOIP
traffic and directly route it from router to PABX.

Assuming - This VOIP traffic is coming from trusted partner's network
but I dont have any control on thier nework at this point of time.

Comments and Suggestions willl be appreciated !!!

Regards
Al
--
 Alvin
 alvind12 () ftml net

--
http://www.fastmail.fm - Access your email from home and the web


------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers
are
futile against web application hacking. Check your website for
vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers
do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------







------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

Current thread:

VOIP Security Alvin (Sep 22)
- <Possible follow-ups>
- Re: VOIP Security arif . jatmoko (Sep 23)
- RE: VOIP Security Hayes, Ian (Sep 23)