Obi202 expectations from a newbie
tns1:
Thanks for the info. Many new concepts for me. If I understand you, the reason to use the Obitalk portal to provision my 202 is that it simplifies setup, prevents accidental changes, and prevents abuse by 3rd parties potentially costing me and/or my provider. That all sounds good to me. My goal of replacing a basic POTS line has not changed, and with my limited testing it looks like the Obi202 could do that very well. This doesn't mean I don't want to understand the security risks, or that I might not want more out of it in the future.
In the SIP scanner thread it is mentioned that Obihai uses one or more of the scan prevention methods (Oleg) for providers it recommends. I looked at the relevant settings with Obi Expert, and based on the thread I am not seeing that. My unused SPn services are still enabled, and my X_InboundCallRoute is still {ph1}. The only thing I see is that my X_UserAgentPort does not begin with 506.
I don't really know how the SIP scan exploit works, but it sounds like a good thing to prevent. Are these SIP scan remedies still a good idea to implement? If so, why were they not part of the basic provisioning? Is this only done for the Obitalk/Anveo annual plan? Did I do something incorrectly during setup?
thanks
SteveInWA:
The settings described in that thread are not defaults, and the majority of users don't experience this exploit. If you're concerned about it, you can add the modifications yourself; properly typed in, it won't hurt anything.
No doubt, someone will disagree with me, but in my own opinion, the only real-world risk of a SIP scanner is that somebody clever enough to exploit a SIP scan would at worst make some phone calls using your account, which you would eventually discover yourself. They're not going to be stealing your bank account information. They're looking for larger enterprise PBX installations where it might be worth the effort to use the system for large-scale robocalling. These days, SIP trunks are so cheap that trying to exploit someone else's account is rather pointless. The main reason to deal with it is if/when you start receiving annoying calls from fake scanner numbers.
Navigation
[0] Message Index
[*] Previous page