Security

We have a new go(lang) based APIBAN client that will send IP addresses directly to your chosen fail2ban jail. The new client comes to us from concerns of FreePBX users of fail2ban fighting iptables additions. There’s other benefits for freepbx users, including seeing IP addresses in the GUI, etc. There’s also a super simple, lazy install method: curl -sSL https://raw.githubusercontent.com/apiban/apiban-fail2ban/main/install.sh | bash -s -- APIBANKEY (where APIKEY is your APIBAN API KEY)...

You’ve probably heard me say (once or twice)… APIBAN helps prevent unwanted SIP traffic by identifying addresses of known bad actors before they attack your system. Bad actors are collected through globally deployed honeypots and curated by LOD/APIBAN. I started APIBAN back in 2020 and for the past 3 years have greatly enjoyed helping others protect their SIP systems from IP addresses sending unwanted traffic. The service is provided for FREE....

We recently made some dramatic enhancements to the APIBAN infrastructure. As I joked on Mastodon, I must be getting older as these improvements were made well before an emergency. If you’re not familiar, APIBAN helps prevent unwanted SIP traffic by identifying addresses of known bad actors before they attack your system. Bad actors are collected through globally deployed honeypots and curated by LOD. You can access this data via API or automatically block the traffic with our open source client....

When the bakery closed during Covid, one reason was Bank of America’s delays in handling of our emergency loan (PPP) request. That’s a different story for another time, but the bottom line is that I moved from Bank of America to a credit union (for both business and personal banking). Recently, the credit union attempted to update their online banking. It’s a disaster and customers have been without access to transfers, bill pay, balances, etc for over 2 weeks....

The major announcement at ClueCon 2021 was the release of FreeSWITCH 1.10.7. Highlights from this release: fixes for security advisories (upgrade today) support for Debian 11 bug fixes etc There’s a great presentation from Sandro Gauci regarding the story behind some of the vulnerabilities he (and his team) discovered/submitted. Included in his story, is one of my favorite moments from Kamailio World. Read More Enable Security: Killing bugs … one vulnerability report at a time Speaker Deck: Sandro’s slides from ClueCon FreeSWITCH 1....

APIBAN helps prevent unwanted SIP traffic by identifying addresses of known bad actors before they attack your system. Bad actors are collected through globally deployed honeypots and curated by LOD/APIBAN. APIBAN started from discussions at tech conferences (in particular Kamailio World and Astricon). Most of the attendees had seen increases in malicious SIP traffic and we all thought there should be a way to share the active “bad actors.” When I found myself with some downtime, and with the support of LOD, some honeypots were deployed… and API made to share the data, and APIBAN was born....

Recently, I posted about using Kamailio’s PIKE module to help block excessive SIP traffic. This is a great tool for helping your system handle high traffic SIP, such as floods. But, what can you do when someone sends garbage or non-SIP traffic to your system? Kamailio’s SIP parser is handled in the core and was recently upgraded in v5.5 with logging improvements, as well as simplified implementation, static map for header name, and type for parsing....

[][1]Tell me about you. On a recent trip to Target, I decided to add some compressed air to my cart. Working in electronics, I find compressed air to be almost a necessity. The servers, computers, switches, and other equipment I use routinely need a good “spritz” of compressed air to keep the dust from accumulating. But I digress. When I went to check out, my cashier advised that I needed to scan my ID to purchase the compressed air. Not just show her my ID, but rather have my driver’s license scanned into their register. This of course allows Target to scan, read, and store my personally identifiable information. Although just someone’s full name fulfills the criteria of personally identifiable information, a Driver’s License barcode and/or magnetic stripe contains much more. By scanning the driver’s license, Target retains my full name, date of birth, address, gender, race, driver’s license number, license information (restrictions, endorsements), organ donation, and issue date. First, let’s look at the obvious… ...