<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=us-ascii"><meta name=Generator content="Microsoft Word 14 (filtered medium)"><!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><title>Re: [Freeswitch-users] [Special Announcement] ClueCon Weekly Special Security Edition! Wed Oct 23rd @ 1PM Eastern</title><style><!--
/* Font Definitions */
@font-face
        {font-family:"Cambria Math";
        panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
        {font-family:Calibri;
        panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
        {font-family:Tahoma;
        panose-1:2 11 6 4 3 5 4 4 2 4;}
@font-face
        {font-family:Verdana;
        panose-1:2 11 6 4 3 5 4 4 2 4;}
@font-face
        {font-family:Consolas;
        panose-1:2 11 6 9 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
        {margin:0in;
        margin-bottom:.0001pt;
        font-size:12.0pt;
        font-family:"Times New Roman","serif";
        color:black;}
a:link, span.MsoHyperlink
        {mso-style-priority:99;
        color:blue;
        text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
        {mso-style-priority:99;
        color:purple;
        text-decoration:underline;}
pre
        {mso-style-priority:99;
        mso-style-link:"HTML Preformatted Char";
        margin:0in;
        margin-bottom:.0001pt;
        font-size:10.0pt;
        font-family:"Courier New";
        color:black;}
p.MsoAcetate, li.MsoAcetate, div.MsoAcetate
        {mso-style-priority:99;
        mso-style-link:"Balloon Text Char";
        margin:0in;
        margin-bottom:.0001pt;
        font-size:8.0pt;
        font-family:"Tahoma","sans-serif";
        color:black;}
span.HTMLPreformattedChar
        {mso-style-name:"HTML Preformatted Char";
        mso-style-priority:99;
        mso-style-link:"HTML Preformatted";
        font-family:Consolas;
        color:black;}
span.EmailStyle19
        {mso-style-type:personal-reply;
        font-family:"Calibri","sans-serif";
        color:#1F497D;}
span.BalloonTextChar
        {mso-style-name:"Balloon Text Char";
        mso-style-priority:99;
        mso-style-link:"Balloon Text";
        font-family:"Tahoma","sans-serif";
        color:black;}
.MsoChpDefault
        {mso-style-type:export-only;
        font-size:10.0pt;}
@page WordSection1
        {size:8.5in 11.0in;
        margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
        {page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body bgcolor=white lang=EN-US link=blue vlink=purple><div class=WordSection1><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>I wonder if Yealink phones have a certificate that can verify the MAC address being provisioned, the way the newer Snom do.<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><a href="http://wiki.snomone.com/index.php?title=Plug_and_Play_for_snom_phones#Pairing_the_phone_with_snom_ONE">http://wiki.snomone.com/index.php?title=Plug_and_Play_for_snom_phones#Pairing_the_phone_with_snom_ONE</a><o:p></o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><div><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-size:7.5pt;font-family:"Verdana","sans-serif";color:#333399'>Thanks,<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:7.5pt;font-family:"Verdana","sans-serif";color:#333399'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-size:7.5pt;font-family:"Verdana","sans-serif";color:#333399'>Moishe Grunstein<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:7.5pt;font-family:"Verdana","sans-serif";color:#333399'>Tornado Computer Systems, Inc.<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:7.5pt;font-family:"Verdana","sans-serif";color:#333399'>212.400.7650 888.IPPBX.US<br></span><b><span style='font-size:7.5pt;font-family:"Verdana","sans-serif";color:#76923C'>Service Request Email: <a href="mailto:support@nysolutions.com">support@nysolutions.com</a> </span></b><span style='font-size:10.0pt;font-family:"Arial","sans-serif";color:#333399'><o:p></o:p></span></p><p class=MsoNormal><span style='font-size:7.5pt;font-family:"Verdana","sans-serif";color:#333399'>Polycom Certified VAR<br>Microsoft Small Business Specialist, Cisco SMB Select Certified</span><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#333399'><o:p></o:p></span></p><p class=MsoNormal><a href="http://www.nysolutions.com/"><span style='font-size:10.0pt;font-family:"Arial","sans-serif";color:#1F497D;text-decoration:none'><img border=0 width=147 height=68 id="Picture_x0020_1" src="cid:image001.jpg@01CED0A9.B4D65980" alt="cid:image001.jpg@01C72F94.9EE45D60"></span></a><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p></o:p></span></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-size:8.0pt;font-family:"Calibri","sans-serif";color:#C0504D'>Computer Networking * Managed Services * IP Video Surveillance * Network Assessments * Web Solutions * Voice over IP * Disaster Recovery * Network Security * Site Surveys * CMS</span><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p></o:p></span></p></div><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><div><div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif";color:windowtext'>From:</span></b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif";color:windowtext'> freeswitch-users-bounces@lists.freeswitch.org [mailto:freeswitch-users-bounces@lists.freeswitch.org] <b>On Behalf Of </b>Moshe3t<br><b>Sent:</b> Thursday, October 24, 2013 10:47 AM<br><b>To:</b> FreeSWITCH Users Help<br><b>Subject:</b> Re: [Freeswitch-users] [Special Announcement] ClueCon Weekly Special Security Edition! Wed Oct 23rd @ 1PM Eastern<o:p></o:p></span></p></div></div><p class=MsoNormal><o:p> </o:p></p><div><p class=MsoNormal>Hi <br><br>I would suggest (I have Bcc'd Yealink as well) that as they have when a phone is reset to factory default it pops up on the screen of the phone local network option (DHCP/Static) and modifiable via phone keypad it should also ask encrypted provisioning or not and if encrypted is chosen it should let the end user put in the decryption key via phone keypad which will be available on the website of the provisioning server (assuming the its secure as in most cases might hold sip credes as well) so the end user will be able to setup and auto provision their phone without login to the phone web gui (ok! it won't zero touch it will be 1 touch provisioning, as if the doesn't have to touch the phone at all ;-) ) <br><br>before submitting this approach to any vendors i would like to hear input and make sure the issue is addressed properly and hear if anyone have a better approach to fix this issue globally (at least with Yealink line ofproduct as they seem to be very cooperative and understanding in general especially when it comes to security, in hopes other companies will follow suit) <br><br>Sincerely <br><br><br>Moshe BT<br><br><br><br><br>On 10/24/2013 10:05 AM, Ken Rice wrote:<o:p></o:p></p></div><blockquote style='margin-top:5.0pt;margin-bottom:5.0pt'><p class=MsoNormal style='margin-bottom:12.0pt'><span style='font-size:11.0pt;font-family:"Courier New"'>The video has been marked private at vendor request...<br><br><br>On 10/24/13 2:11 AM, "Gerald Weber" <<a href="gerald.weber@besharp.at">gerald.weber@besharp.at</a>> wrote:</span><o:p></o:p></p><p class=MsoNormal style='margin-bottom:12.0pt'><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>Thanks, but youtube says this video is private.<br> <br></span><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>Von:</span></b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> <a href="freeswitch-users-bounces@lists.freeswitch.org">freeswitch-users-bounces@lists.freeswitch.org</a> [<a href="mailto:freeswitch-users-bounces@lists.freeswitch.org">mailto:freeswitch-users-bounces@lists.freeswitch.org</a>] <b>Im Auftrag von </b>Cal Leeming [Simplicity Media Ltd]<br><b>Gesendet:</b> Mittwoch, 23. Oktober 2013 23:38<br><b>An:</b> FreeSWITCH Users Help<br><b>Cc:</b> <a href="freeswitch-dev@lists.freeswitch.org">freeswitch-dev@lists.freeswitch.org</a>; <a href="freeswitch-cluecon@lists.freeswitch.org">freeswitch-cluecon@lists.freeswitch.org</a><br><b>Betreff:</b> Re: [Freeswitch-users] [Special Announcement] ClueCon Weekly Special Security Edition! Wed Oct 23rd @ 1PM Eastern<br></span><br><span style='font-size:11.0pt;font-family:"Courier New"'><br></span>For those that missed it, you can watch the whole thing here;<br><span style='font-size:11.0pt;font-family:"Courier New"'><br></span><span style='font-size:10.0pt;font-family:"Arial","sans-serif"'><a href="http://www.youtube.com/watch?v=raXkHi_uGF8">http://www.youtube.com/watch?v=raXkHi_uGF8</a></span><o:p></o:p></p><p class=MsoNormal><u><span style='font-size:11.0pt;font-family:"Courier New";color:#888888'><br></span></u><span style='font-size:11.0pt;font-family:"Courier New"'>-- <br>Ken<br><a href="http://www.FreeSWITCH.org">http://www.FreeSWITCH.org</a><br><a href="http://www.ClueCon.com">http://www.ClueCon.com</a><br><a href="http://www.OSTAG.org">http://www.OSTAG.org</a><br>G+ ClueCon : <a href="http://fs0.us/cluecon-gplus">http://fs0.us/cluecon-gplus</a><br>FB ClueCon : <a href="http://fs0.us/cluecon-fb">http://fs0.us/cluecon-fb</a><br>G+ FreeSwitch : <a href="http://fs0.us/freeswitch-gplus">http://fs0.us/freeswitch-gplus</a><br>FB FreeSWITCH : <a href="http://fs0.us/freeswitch-fb">http://fs0.us/freeswitch-fb</a> <br>Twitter : @FreeSWITCH_WIRE<br>irc.freenode.net #freeswitch<br></span><br><br><br><o:p></o:p></p><pre>_________________________________________________________________________<o:p></o:p></pre><pre>Professional FreeSWITCH Consulting Services:<o:p></o:p></pre><pre><a href="mailto:consulting@freeswitch.org">consulting@freeswitch.org</a><o:p></o:p></pre><pre><a href="http://www.freeswitchsolutions.com">http://www.freeswitchsolutions.com</a><o:p></o:p></pre><pre><o:p> </o:p></pre><pre>FreeSWITCH-powered IP PBX: The CudaTel Communication Server<o:p></o:p></pre><pre><a href="http://www.cudatel.com">http://www.cudatel.com</a><o:p></o:p></pre><pre><o:p> </o:p></pre><pre>Official FreeSWITCH Sites<o:p></o:p></pre><pre><a href="http://www.freeswitch.org">http://www.freeswitch.org</a><o:p></o:p></pre><pre><a href="http://wiki.freeswitch.org">http://wiki.freeswitch.org</a><o:p></o:p></pre><pre><a href="http://www.cluecon.com">http://www.cluecon.com</a><o:p></o:p></pre><pre><o:p> </o:p></pre><pre>FreeSWITCH-users mailing list<o:p></o:p></pre><pre><a href="mailto:FreeSWITCH-users@lists.freeswitch.org">FreeSWITCH-users@lists.freeswitch.org</a><o:p></o:p></pre><pre><a href="http://lists.freeswitch.org/mailman/listinfo/freeswitch-users">http://lists.freeswitch.org/mailman/listinfo/freeswitch-users</a><o:p></o:p></pre><pre>UNSUBSCRIBE:<a href="http://lists.freeswitch.org/mailman/options/freeswitch-users">http://lists.freeswitch.org/mailman/options/freeswitch-users</a><o:p></o:p></pre><pre><a href="http://www.freeswitch.org">http://www.freeswitch.org</a><o:p></o:p></pre></blockquote><p class=MsoNormal><o:p> </o:p></p></div></body></html>