[VOIPSEC] session border controllers
Tim Mehmet
tim at hackerstorm.com
Sat Feb 12 19:09:39 CST 2005
It depends on the vendor.
Some vendors do little or nothing, some prefer to build security into
the overall solution (eg. Softswtiches, RTP portals, Network devices,
firewalls, IDS/IPS etc) instead of completely relying on the SBC.
Some vendors have the ability to address some of the issues, Netrake and
Acme Packet have a long list of features specifically designed for
defending against attacks and I cant remember which but I think one or
both can inspect the protocol for known/certain issues up to the
application level as well, but dont quote me on that :-)
But dont be fooled by the bells and whistles, these devices definately
need protection even though some vendors claim to be full blown
firewalls.
Tim
On Sat, 2005-02-12 at 17:46, gary madsen wrote:
> Does anyone know how much defense session border controllers provide
> against the following types of vulnerabilities typically found through
> protocol fuzzing?
>
>
> Multiple vulnerabilities in implementations of the Session Initiation
> Protocol (SIP)
> http://www.cert.org/advisories/CA-2003-06.html
>
> Multiple H.323 Message Vulnerabilities
> http://www.cert.org/advisories/CA-2004-01.html
>
>
> Cheers,
> Gary
>
> _______________________________________________
> Voipsec mailing list
> Voipsec at voipsa.org
> http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
More information about the Voipsec
mailing list