Synopsis:Blue Box #69: Linksys SPA-941 vulnerability, SIP DDoS, New release of SIPVicious, Asterisk security roadmap, other VoIP security news, listener comments and more
Welcome to Blue Box: The VoIP Security Podcast #69, a 46-minute podcast from Dan York and Jonathan Zar covering VoIP security news, comments and opinions.
You may also listen to this podcast right now:
- 00:20 - Intro to the show, contact information and how to provide comments. Welcome to all the new listeners - and to all those listeners who have been here for so long!
- 01:03 - Programming notes:
- Reminder of new comment line – 206-350-7280
- Books from Peter Thermos and Ari Takanen – anniversary show promotion
- 02:13 - XSS attack against Linksys SPA-941
- 07:52 - USENIX ;login: article about SIP DDoS from Hement Sengar
- 12:10 - New release of SIPVicious tool suite
- 14:49 - Voice of VOIPSA: Suggestions for a Security Roadmap for Asterisk
- 21:02 - heise.uk: Skype silently fixes URI problem which relates to Windows issue pointed out back in July (see also here )
- 25:39 - heise online: Bavarian Criminal Police Office denies use of Trojan to eavesdrop on VoIP calls
- 27:57 - Zeenews.com (India): CBI favours monitoring of Internet gateways and networks
- 28:54 - Washington Post: VOIP Mix-Up Exposes Customer Call Data
- 31:58 - CXO Today (India): Mobile Business Applications Boost Security Demand
- 35:08 - Upcoming shows:
- 35:33 - Comments - challenge with audio comment
- 35:47 - Comment (email) from Stephen Bosch asking about the CISSP credential
- 40:13 - Comment (email) from Scott Tanner (which we’ll hold for the 2-yr show) - Dan also gets talking about Dopplr.com
- 41:27 - Comment (email) from Frank Leonhardt
- 41:40 - Comment (email) from Michael Miller about PPT syncing software - answer is that we use a site called SlideShare
- 43:18 - Review of the last week's traffic on the VOIPSEC public mailing list
- 43:57 - Wrap-up of the show
- 46:26 - End of show
Comments, suggestions and feedback are welcome either as replies to this post or via e-mail to firstname.lastname@example.org. Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows. You may also call the listener comment line at either +1-206-350-7280 or via SIP to 'email@example.com' to leave a comment there.
Thank you for listening and please do let us know what you think of the show.