[Freeswitch-users] Hacker Attack?

curriegrad2004 curriegrad2004 at gmail.com
Sun Jan 30 08:12:47 MSK 2011


I'd suspect they just do a port scan and see who has port 5060 up and
running. Wouldn't be too surprised if they went through the SRV route

On Sat, Jan 29, 2011 at 7:24 PM, Gabriel Gunderson <gabe at gundy.org> wrote:
> On Sat, Jan 29, 2011 at 6:48 PM, Frank Park <frank at telonium.com> wrote:
>> It's pretty normal to see a crawler every so often that tries to brute-force
>> the username/password combo on SIP servers. Most of them are kiddie scripts
>> online and shouldn't last long.
>
> Has anyone seen enough of these to know if they're sophisticated
> enough to use SRV records to find their target, or to they just plot
> along at 5060 for some range of IP addresses?
>
> Gabe
>
> _______________________________________________
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>



More information about the FreeSWITCH-users mailing list