[VOIPSEC] RE: Voipsec Digest, Vol 4, Issue 24
Mara, Jean-Pierre (Jean-Pierre)
jpmara at lucent.com
Mon Apr 25 07:01:50 CDT 2005
Here is one situation to test
Subscriber A is located on site A which may be Cable or DSL. At the Far End,
the Subscriber is calling Subscriber B who is connected to the PSTN.
The behavior to test is one where the security is granted to both
susbscriber over SBC from different in the combination of
SIP/VoIP network inter connecting with PSTN accorss a Media Gateway that
implements H248.
Further we assume that the signaling is taking different path than the
RTP/RTCP flow.
In such a network the SBC should ideally have two link to the far
destination: a signaling link to SS7/SS8 network and a media link carrying
the RTP/RTCP Stream.
The issue is: Securing the sigtran signaling(Sigtran) path up to the SS7
network and securing the RTP/RTCP path accross the IP/MPLS path toward the
Far End media gateway.
Further, it would be a good idea to test the scenario where SBC from Vendor
x used on site A and SBC from vendor Y used on site B.
Just an idea but the architecture have always been subject for discussion
with several customers
Jean-Pierre MARA
Senior Cosnultant
Security of converged Network
Lucent Technologies
-----Original Message-----
From: Voipsec-bounces at voipsa.org [mailto:Voipsec-bounces at voipsa.org]On
Behalf Of Voipsec-request at voipsa.org
Sent: lundi 25 avril 2005 13:07
To: Voipsec at voipsa.org
Subject: Voipsec Digest, Vol 4, Issue 24
Send Voipsec mailing list submissions to
Voipsec at voipsa.org
To subscribe or unsubscribe via the World Wide Web, visit
http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
or, via email, send a message with subject or body 'help' to
Voipsec-request at voipsa.org
You can reach the person managing the list at
Voipsec-owner at voipsa.org
When replying, please edit your Subject line so it is more specific
than "Re: Contents of Voipsec digest..."
Today's Topics:
1. RE: SBC security/pen testing (Christopher A. Martin)
2. Re: SBC security/pen testing (A S)
----------------------------------------------------------------------
Message: 1
Date: Sat, 23 Apr 2005 10:00:08 -0500
From: "Christopher A. Martin" <chris at infravast.com>
Subject: RE: [VOIPSEC] SBC security/pen testing
To: "'A S'" <ccrouter at gmail.com>, <Voipsec at voipsa.org>
Message-ID: <000201c54815$23fec760$6403a8c0 at home1>
Content-Type: text/plain; charset="us-ascii"
Look for underlying protocols that may not have been disabled, such as
rcp, ftp, telnet and default usernames and passwords...hint vxworks.
-----Original Message-----
From: Voipsec-bounces at voipsa.org [mailto:Voipsec-bounces at voipsa.org] On
Behalf Of A S
Sent: Friday, April 22, 2005 1:35 PM
To: Voipsec at voipsa.org
Subject: [VOIPSEC] SBC security/pen testing
Greetings All,
Testing SBC's from different vendors. Any idea/ suggestions?
thanks
_______________________________________________
Voipsec mailing list
Voipsec at voipsa.org
http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
------------------------------
Message: 2
Date: Sat, 23 Apr 2005 13:02:03 -0400
From: A S <ccrouter at gmail.com>
Subject: Re: [VOIPSEC] SBC security/pen testing
To: Voipsec at voipsa.org
Message-ID: <fd13ca5a0504231002193f96cd at mail.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
I have Scan SBC's using NMAP, Nessus, Sivus. interstingly almost all of
them have UDP ports open. One has FTP port open !!!. Wondering why
vendors are not testing their Security products against very well known,
easily
avaiable security tools.
thx
On 4/23/05, Christopher A. Martin <chris at infravast.com> wrote:
> Look for underlying protocols that may not have been disabled, such as
> rcp, ftp, telnet and default usernames and passwords...hint vxworks.
>
> -----Original Message-----
> From: Voipsec-bounces at voipsa.org [mailto:Voipsec-bounces at voipsa.org] On
> Behalf Of A S
> Sent: Friday, April 22, 2005 1:35 PM
> To: Voipsec at voipsa.org
> Subject: [VOIPSEC] SBC security/pen testing
>
> Greetings All,
>
> Testing SBC's from different vendors. Any idea/ suggestions?
>
> thanks
>
> _______________________________________________
> Voipsec mailing list
> Voipsec at voipsa.org
> http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
>
>
------------------------------
_______________________________________________
Voipsec mailing list
Voipsec at voipsa.org
http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
End of Voipsec Digest, Vol 4, Issue 24
**************************************
More information about the Voipsec
mailing list