[Freeswitch-users] general question about phone provisioning

Nandy Dagondon nandy1925 at gmail.com
Mon Nov 12 04:33:58 MSK 2012


Hi abaci,

IMHO, start with encrypted config files. Then, I also see some ATA with
password option which means login sessions can be setup with your
provisioning servers for more security.

/nandy

On Mon, Nov 12, 2012 at 7:35 AM, Abaci <abaci64 at gmail.com> wrote:

> This question is not specific to FreeSWITCH, just a general question
> that I would like to get feedback from other FreeSWITCH users.
> I'm thinking of setting up phone provisioning via http, my question is
> how to make this setup secure. say my provisioning server will listen on
> https://myserver.com and a phone with the mac address 00-15-65-22-F4-23
> will try to pull the config as https://myserver.com /00156518425Dhow do
> I prevent hackers from trying to get config files using a brute force
> attack. is there any standard way of securing against these types of
> attacks?
>
> _________________________________________________________________________
> Professional FreeSWITCH Consulting Services:
> consulting at freeswitch.org
> http://www.freeswitchsolutions.com
>
> 
> 
>
> Official FreeSWITCH Sites
> http://www.freeswitch.org
> http://wiki.freeswitch.org
> http://www.cluecon.com
>
> FreeSWITCH-users mailing list
> FreeSWITCH-users at lists.freeswitch.org
> http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
> UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
> http://www.freeswitch.org
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.freeswitch.org/pipermail/freeswitch-users/attachments/20121112/58eaa282/attachment-0001.html 


Join us at ClueCon 2011 Aug 9-11, 2011
More information about the FreeSWITCH-users mailing list