http://wiki.integrics.com/api.php?action=feedcontributions&feedformat=atom&user=Dovid 2026-05-06T22:09:01Z User contributions MediaWiki 1.31.7 http://wiki.integrics.com/index.php?title=Security_Considerations&diff=48 2015-02-25T17:23:32Z

<p>Dovid: </p> <hr /> <div>* Disallow routes to countries that customers don't need, especially high fraud countries.<br /> * Set a daily spending limit for all customers.<br /> * Requiring long password lengths for phones and people.<br /> * Educate customers on choosing good passwords.<br /> * Have contracts to make sure the right person pays if they are hacked and run up a huge bill.<br /> * Change the SSH port from 22 to something non standard like 9900.<br /> * Use IPTables to lock out countries where you do not have customers.<br /> * Set Asterisk servers to use non default ports for SIP like 5065 instead of 5060.<br /> * Make sure all handsets have a username and password which are not the devices default.<br /> * Monitor servers with a tool like Nagios and or Cacti where there is an alert if there is more than X calls per customer, system etc.<br /> <br /> Some systems have easySysAdmin or fail2ban (for example) automatically block brute force SSH or SIP registration attacks.</div>

Dovid