Ballpark figures on a PBX assessment

[mikem () tridigitalenterprises com]

Hi Folks,

We're looking at having a vulnerability assessment done on our PBX, and
I'd like to get a feel for what it might cost.

Specifically, we're looking to have the following accomplished:

* PBX configuration reviewed for any misconfigurations that could result
  in a compromise
* A check of approximately 1000 phone numbers (war-dialing) to detect the
  presence of any modems or other devices set to auto-answer
* A review of logging capabilities and configurations on the PBX to ensure
  that all call details are being properly logged
* Verification that all userids/passwords on the PBX are being changed
  according to company policies

If anyone has done these sorts of tests on a PBX before and wouldn't mind
sharing what a ballpark estimate might cost, we'd be most appreciative.
If not dollars, then possibly hours required to perform an adequate review
and test.

Thanks in advance,
-Mike.



------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------