Originally posted on VoIP & Gadgets Blog, here: http://blog.tmcnet.com/blog/tom-keating/asterisk/cracking-ip-pbx-sip-passwords---be-afraid.asp.
A few years ago I had an email conversation with Chris Lyman, the former CEO of Fonality, the makers of trixbox IP-PBX systems. I expressed concern that their trixbox Pro system was using the MAC address both for the password and the username, which for obvious reasons isn't very secure.
Below is the email conversation slightly edited for security and clarification reasons, followed by some further thoughts on SIP security:
Continue. . .
No comments:
Post a Comment