SIP Brute Force Attacks Escalate Over Halloween Weekend.

Monday, 1. November 2010

SIP brute force attacks escalate over Halloween weekend.

Looks like the bad guys were up to no good again this weekend. SIP based PBX operators reported a huge increase in bogus registration attempts against their systems over the Halloween weekend. Our hosted PBX farm experienced this increase first hand. Logs showed an attack from a new and unique IP address about every minute. At the end of the weekend, over 1300 unique IP addresses were logged.

Read more

Share

Setting Up Native IPv6 Connectivity, A Network Operators Overview.

Friday, 2. July 2010

Setting up IPv6 connectivity.

Back in December `09, my company ACT USA, began testing IPv6. These tests quickly advanced to our production environment. Over the last six months, I have been in the process of setting up native IPv6 connectivity for all our data centers. This connectivity is based on the dual stack model. This article attempts to cover the technology available, and the choices I made based on that technology.

Read more

Share

Building Redundant Networks in Data Centers

Monday, 7. June 2010

Building Redundant Networks in Data Centers.

I recently was asked to put together a brief web presentation on the different methods of creating redundant networks. I couldn’t think of a better place to put it, then right here on my blog. After all, I was overdue for a post anyways…

What do I mean by redundant networks?

A redundant network is two or more distinct paths for data to travel to and from an upstream network. In it’s simplest form, it can be a piece of equipment that can be manually placed into service easily upon a failure. More often though it is set up so that any single device or connection can fail, and without user intervention, a backup system or connection will automatically step in and take over the job of the failed device, or connection. A redundant network does not mean that no mater what happens, your data will still be reachable. There are many factors that need to be considered, ranging anywhere from your providers, to your applications, that can cause a failure.

Read more

Share

Amazon Brute Force SIP Attacks – Dave Michels Interviews Me

Monday, 19. April 2010

Amazon Brute Force SIP Attacks – Dave Michels Interviews Me.

Shortly After my “SIP Brute Force Attack Originating From Amazon EC2 Hosts” post, Dave Michels interviewed me for an article Dark Side of the Cloud. This is that interview:

Dave:   What do you believe the intent was of the attacks? Free long distance?

Stu: Certainly free long distance would be one reason… But there are many other reasons to hijack a SIP account. I’m sure that organized crime would pay for a block of active SIP logins. They could use them to circumvent surveillance, or possibly use them for fraudulent boiler room calls about extended warranties and such.

Remember, most folks still believe that the Telephone System is secure… They tend to believe someone who is calling them.

Read more

Share

SIP Brute Force Attack Originating From Amazon EC2 Hosts

Sunday, 11. April 2010

SIP Brute Force Attack Originating From Amazon EC2 Hosts.

I woke up Saturday morning to find strangely high network activity on some of our inbound connections. After a quick review, it turned out that most of the traffic was going into several of our hosted PBX systems. After a little more digging, I discovered that several systems on the Amazon EC2 network were preforming brute force attacks, against our VoIP servers. They were attempting to guess user names and passwords for our SIP clients. I immediately blocked all traffic from the attacking IPs and examined the logs. Thankfully, I found that non of the attacks had succeeded in guessing passwords.

Read more

Share

The Technology of SCALE8x – A Post Event Review. PART – 1

Monday, 22. February 2010

The Technology of SCALE8x – A Post Event Review. PART – 1

Every February in Los Angeles CA, a group of dedicated volunteers get together to put on what many believe to be the largest all volunteer organized open source technology conventions in the US. This three day event features talks and exhibits specifically targeted at Open Source users, programmers, and system administrators.

Read more

Share

Choosing A Web Content Management Software.

Tuesday, 28. July 2009

Choosing the right software for your dynamic web content management is important.

There are tons of hosted and installable software packages out there that do web content management. Some good, some not so good. Only one thing is certain, you’ll have your work cut out for you if you choose the wrong one.

I’m going to talk about a few of the most popular open source packages that are out in the wild. Each are different, and do things differently. The one that’s right for you, depends on what your endgame is.

Read more

Share

Is The Internet Killing Main Street?

Thursday, 16. July 2009

Is the Internet killing Main Street, or was it already dead?

When I was a kid, I could walk down Las Tunas Blvd. and not go more then 3 store fronts without knowing the the business owner’s names. Well, at least their family names, because back then you called people by their last name, usually preceded by a Mr., Mrs. or Miss.

That’s not to say that there weren’t Super Markets and Department Stores. But you still went down to the corner drug store to get your prescriptions, paper and office supplies were purchased from the local stationary store, and small toy stores and hobby shops were where I would go and dream of all the fun I could have for the price of a months allowance.

Read more

Share