Blue Box #72: Asterisk security vulnerabilities, Skype and the German government, VoIP security news, listener comments and more
Synopsis: Blue Box #72: Asterisk security vulnerabilities, Skype and the German government, VoIP security news, listener comments and more
Welcome to Blue Box: The VoIP Security Podcast #72, a 25-minute podcast from Dan York and Jonathan Zar covering VoIP security news, comments and opinions.
Download the show here (MP3, 11MB) or subscribe to the RSS feed to download the show automatically.
You may also listen to this podcast right now:
NOTE: This show was recorded on November 30, 2007.
Show Content:
- 00:20 - Intro to the show, contact information and how to provide comments. Welcome to all the new listeners - and to all those listeners who have been here for so long!
- - AST-2007-025 – Asterisk – SQL Injection issue in res_config_pgsql
- - AST-2007-026 – Asterisk SQL Injection issue in cdr_pgsql
- - TechWorld: Expert scares world with VoIP hacking proof pointing to SIPtap - Articles also in ComputerWorld
- - Wired: Skype encryption baffles German police – also in The Register and TechDirt
- - VoIP News: Why Nobody’s VoIP is Secure
- - PC World: ‘Swatters’ Trick AT&T’
- - Comment (email) from Shawn Merdinger
- - Comment (email) from Yann Cloatre
- - Comment (email) from Miguel Garcia
- - Comment (email) from Roel Villarius about Dutch spam filter
- - Review of the last week's traffic on the VOIPSEC public mailing list
- - Wrap-up of the show
- 25:27 - End of show
Comments, suggestions and feedback are welcome either as replies to this post or via e-mail to blueboxpodcast@gmail.com. Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows. You may also call the listener comment line at either +1-206-350-7280 +1-415-830-5439 or via SIP to 'bluebox@voipuser.org' to leave a comment there.
Thank you for listening and please do let us know what you think of the show.
Comments