Educause Security Discussion mailing list archives

Re: IP Videoconferencing

From: "Davis, Thomas R." <tdavis () INDIANA EDU>
Date: Wed, 5 Nov 2003 11:00:22 -0500

And some are setup to auto-answer incoming calls by default.  If the TV
monitor were off and the VC equipment were on, it could be possible for
someone to listen in on a meeting undetected. 

-- 
Tom Davis, Information Technology Security Officer, CISSP, CISM
Office of the VP for Information Technology, Indiana University
For PGP Key: https://www.itso.iu.edu/staff/tdavis 
 
-----Original Message-----
From: The EDUCAUSE Security Discussion Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Brian Reilly
Sent: Wednesday, November 05, 2003 10:04 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] IP Videoconferencing


I wouldn't assume that the devices are properly taking care of
authentication, encryption, and other security requirements.  Several
popular videoconferencing devices ship with default passwords, only
support cleartext protocols for management, and may not enable
encryption
by default.

**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/cg/.

Current thread:

IP Videoconferencing Walsh, Brian R. (Information Services) (Nov 05)
- <Possible follow-ups>
- Re: IP Videoconferencing Brian Reilly (Nov 05)
- Re: IP Videoconferencing Davis, Thomas R. (Nov 05)
- Re: IP Videoconferencing Ron Parker (Nov 05)
- Re: IP Videoconferencing Tina Bird (Nov 05)
- Re: IP Videoconferencing Charlie Prothero (Nov 05)
- Re: IP Videoconferencing Jere Retzer (Nov 06)