Hi Brian,<div><br></div><div>I had contemplated replying off-list, but was interested to hear other peoples thoughts on this too.</div><div><br></div><div><div><div>First - could you elaborate further on the 'bad apple' that you found, exactly what justifies an attempt to 'hack into our phone systems', and why this person in your story has been fired because of it?</div>
<div><br></div><div>Second, in reference to the 180k IPs.. There are other companies out there that share abusive IP information from a variety of sources. Why do they share? Because it's nice to share. If the FreeSWITCH developers took the same attitude as your post here, then you wouldn't have FreeSWITCH.</div>
<div><br></div><div>Third, why are you telling us this on a public mailing list? If the honeypots are designed to catch people unwittingly, then this post does the exact opposite. This leads me to think that a more probable story is that you actually don't have any honey pots (or the story is slightly exaggerated), and when you realised you gave out potentially damaging information, you panic'd and tried to discourage by asserting this email. If this is the case, then you are taking the lay approach of security through obscurity.</div>
<div><br></div><div>Fourth, if someone is wanting to break into your phone system, they probably don't care about losing their job.. and if they do, then this post will just give them more reason to be careful about hiding themselves.</div>
<div><br></div><div>I apologise in advance if this reply is inappropriate in anyway.</div><div><br></div><div>Cal</div><div><br><div class="gmail_quote">On Sat, Dec 8, 2012 at 11:05 PM, Brian Foster <span dir="ltr"><<a href="mailto:bdfoster@endigotech.com" target="_blank">bdfoster@endigotech.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Regarding a recent mailing list posting that included some of my IP addresses, most of you don't know that I do set up honeypots in hopes of catching some of the bad apples that try and hack into our phone systems. We have a centralized list of Bad IP's that end up getting sent to all of our other servers. Today, one of those servers was an IT guy that works for one of my clients. He has since been fired. If anyone is interested in the 180,000 IP's I've collected...sorry you can't have 'em.<br>
<br>
-BDF<br>
<br>
Sent from my iPhone<br>
_________________________________________________________________________<br>
Professional FreeSWITCH Consulting Services:<br>
<a href="mailto:consulting@freeswitch.org">consulting@freeswitch.org</a><br>
<a href="http://www.freeswitchsolutions.com" target="_blank">http://www.freeswitchsolutions.com</a><br>
<br>
FreeSWITCH-powered IP PBX: The CudaTel Communication Server<br>
<a href="http://www.cudatel.com" target="_blank">http://www.cudatel.com</a><br>
<br>
Official FreeSWITCH Sites<br>
<a href="http://www.freeswitch.org" target="_blank">http://www.freeswitch.org</a><br>
<a href="http://wiki.freeswitch.org" target="_blank">http://wiki.freeswitch.org</a><br>
<a href="http://www.cluecon.com" target="_blank">http://www.cluecon.com</a><br>
<br>
FreeSWITCH-users mailing list<br>
<a href="mailto:FreeSWITCH-users@lists.freeswitch.org">FreeSWITCH-users@lists.freeswitch.org</a><br>
<a href="http://lists.freeswitch.org/mailman/listinfo/freeswitch-users" target="_blank">http://lists.freeswitch.org/mailman/listinfo/freeswitch-users</a><br>
UNSUBSCRIBE:<a href="http://lists.freeswitch.org/mailman/options/freeswitch-users" target="_blank">http://lists.freeswitch.org/mailman/options/freeswitch-users</a><br>
<a href="http://www.freeswitch.org" target="_blank">http://www.freeswitch.org</a><br>
</blockquote></div><br></div></div></div>