[Freeswitch-users] [Security Issue][Need urgent comment]
Michael Jerris
mike at jerris.com
Fri Jan 26 19:00:17 UTC 2018
is it challenging for auth or no? maybe you have blind reg turned on?
> On Jan 26, 2018, at 1:41 PM, Bilal Abbasi <bilaln018 at gmail.com> wrote:
>
> Hi Users,
> I am using FreeSWITCH Version 1.6.19 git c540248 .
> today i noticed very weird issue, that i am getting an attack on one of my dev servers, that somebody is trying to make calls out of the box.
> And he is able to register the phone via "default" username(check via sngrep), i am using complex password and there is NO USER with name "DEFAULT" on my switch.
> I tried to register the default user with any random password and it allowed me to register on my softphone.
> I am really worried, and i can't believe that it's something at FS end.
> I am sure its some mistake, can somebody help me out please.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeswitch.org/pipermail/freeswitch-users/attachments/20180126/20de49fb/attachment.html>
More information about the FreeSWITCH-users
mailing list