Obi508 Hacked
Taoman:
Quote from: sp508 on March 06, 2016, 08:22:14 pm
Do you have any idea of how they get into the OBi in the first place?
I would assume sip scanners found your OBi device on port 5060. They then dialed your device via anonymous ip in order to send a star code to enable unconditional call forwarding along with the desired number. At least that's my best guess. The two configuration changes you made should nip that in the bud.
sp508:
I have three other OBi 508s. Many of the SP are GoogleVoice. I assume that I should enable the
X_AcceptSipFromRegistrarOnly for all ports?
Also, what is the appropriate X_AccessList for GV.
Re: 'If you are logging into OBiTALK using a Google Voice account via OAUTH'. I think I am. I log in via browser and add GV using the OBitalk interface and GV password. What steps should I take.
I didn't realize that they could dial in via ip and then enter a star code. Even though I have disabled direct IP dialing, what is to stop them from dialing in from an outside line and entering star codes.My calls are answered by a regular answering system, they are therefore IN the system and can theoretically enter codes or even enter ***8 and reset my device????
SteveInWA:
Quote from: sp508 on March 07, 2016, 03:21:01 am
I have three other OBi 508s. Many of the SP are GoogleVoice. I assume that I should enable the
X_AcceptSipFromRegistrarOnly for all ports?
Also, what is the appropriate X_AccessList for GV.
Re: 'If you are logging into OBiTALK using a Google Voice account via OAUTH'. I think I am. I log in via browser and add GV using the OBitalk interface and GV password. What steps should I take.
I didn't realize that they could dial in via ip and then enter a star code. Even though I have disabled direct IP dialing, what is to stop them from dialing in from an outside line and entering star codes.My calls are answered by a regular answering system, they are therefore IN the system and can theoretically enter codes or even enter ***8 and reset my device????
FOUR OBi 508s? What sort of spam/robocall/telemarketing operation are you running? You're violating Google's Terms of Service. You're lucky Google hasn't caught you yet and shut your numbers down.
http://www.google.com/intl/en_US/googlevoice/program-policies.html
Aside from that, GV doesn't use SIP, so the settings Taoman mentioned are not applicable to your GV SP slots.
sp508:
No, no robo calls at all (I hate them as much as everyone does!)
I use the GV to enable campers in an overnight camp to call their parents. They all come at the same time so I set up a bunch of phones for them to use. I do it to make it easier for the kids to call home (at a great personal cost I may add). If you want to see which camp it is I will send you our web address privately.
Is X_AccessList also not applicable?
What kind of hardening do you recommend for GV?
Also, if a lot of kids call home at the same time over several hours (they all call home Friday afternoon) will GV shut me down even though I am legit?? Or will they give me the opportunity to show that I am legit.
SteveInWA:
Quote from: sp508 on March 07, 2016, 03:37:43 am
No, no robo calls at all (I hate them as much as everyone does!)
OK. You get a gold star.
Quote
I use the GV to enable campers in an overnight camp to call their parents. They all come at the same time so I set up a bunch of phones for them to use. I do it to make it easier for the kids to call home (at a great personal cost I may add). If you want to see which camp it is I will send you our web address privately.
No thanks, but that sounds like a camp for entitled little whiners and their Millennial helicopter/whiner parents . Queue the "When I was a kid, we had to walk a mile to the camp outhouse and use leaves for TP." grousing.
::) ;D ::) ;D
Quote
Is X_AccessList also not applicable?
Correct. The hackers wouldn't likely be coming in via Google Voice, unless you are using trivial passwords and giving them out to the kids (who knows what evil lurks in the minds of little deviants). :o
Quote
What kind of hardening do you recommend for GV?
Also, if a lot of kids call home at the same time over several hours (they all call home Friday afternoon) will GV shut me down even though I am legit?? Or will they give me the opportunity to show that I am legit.
Your acquisition of multiple GV numbers isn't legit (ToS violation), regardless of what you are doing with them. I recommend getting rid of those rule-breaking GV accounts, and just signing up with a SIP VoIP provider with a bunch of outbound channels and pay-per minute pricing. If these phones are just being used for outbound calling, there really isn't a reason to pay for and keep track of inbound telephone numbers for each one. You could assign the same, single DID (inbound) number to all the phones. Add a small fee to the camper's bill for phoning home if becomes a financial burden, but the cost of channels and outbound minutes is really cheap these days.
Heck, our forum member Sam_from_Circlenet is practically giving it away.
Navigation
[0] Message Index
[#] Next page
[*] Previous page