> >If proxying(h225,h245,rtp) is enable and AcceptUnregisterCalls=1, and your gateway or provider gateway is terminating over the pstn then yes it is possible for someone to terminate traffic on your dime. Of course they would have to know what inbound prefix rule if any will route from your Gnugk to the gateway terminating on the pstn. > >If its h225 routed only or h225 and h245 routed then I think but not 100 percent sure, that the gateway would have to give access to both orignating source and switch on its access list. Maybe someone else can clarify on that. > I've never thought about this, but I think it all depends on the way you setup gnugk and authentication/accounting. I think the requests for unregistered calls are still passed to GkAuth and Acct., so if your authentication is setup correctly you shouldn't have problems. > >-----Original Message----- >From: openh323gk-users-admin@xxxxxxxxxxxxxxxxxxxxx >[mailto:openh323gk-users-admin@xxxxxxxxxxxxxxxxxxxxx]On Behalf Of Derek >Marcotte >Sent: Tuesday, June 08, 2004 3:34 PM >To: openh323gk-users@xxxxxxxxxxxxxxxxxxxxx >Subject: AcceptUnregisteredCalls security >implications > > >Hi Everyone, > What are the security implications: > ><quote src="http://www.gnugk.org/h323manual.html";> >AcceptUnregisteredCalls=1 >Default: 0 >With this feature enabled, the gatekeeper will accept calls from >any unregistered endpoint. However, it raises security risks. Be >careful to use it. ></quote> > >What I can see are the following scenarios: > >If you have CallUnregisteredEndpoints, someone will likely be >able to use the GK to anonymize their calls... (If proxying is >enabled???) > >If you have a GW to the PSTN, they can call the PSTN on your dime > >Does anyone have any feedback on this? I think the manual is a >little lacking in what this means. > >Cheers, >Derek >(beware return address) > >AcceptUnregisteredCalls security > > > >------------------------------------------------------- >This SF.Net email is sponsored by: GNOME Foundation >Hackers Unite! GUADEC: The world's #1 Open Source Desktop Event. >GNOME Users and Developers European Conference, 28-30th June in Norway >http://2004/guadec.org > >_______________________________________________________ > >List: Openh323gk-users@xxxxxxxxxxxxxxxxxxxxx >Archive: http://sourceforge.net/mailarchive/forum.php?forum_id=8549 >Homepage: http://www.gnugk.org/ > > >------------------------------------------------------- >This SF.Net email is sponsored by: GNOME Foundation >Hackers Unite! GUADEC: The world's #1 Open Source Desktop Event. >GNOME Users and Developers European Conference, 28-30th June in Norway >http://2004/guadec.org > >_______________________________________________________ > >List: Openh323gk-users@xxxxxxxxxxxxxxxxxxxxx >Archive: http://sourceforge.net/mailarchive/forum.php?forum_id┘49 >Homepage: http://www.gnugk.org/ ------------------------------------------------------- This SF.Net email is sponsored by: GNOME Foundation Hackers Unite! GUADEC: The world's #1 Open Source Desktop Event. GNOME Users and Developers European Conference, 28-30th June in Norway http://2004/guadec.org _______________________________________________________ List: Openh323gk-users@xxxxxxxxxxxxxxxxxxxxx Archive: http://sourceforge.net/mailarchive/forum.php?forum_id┘49 Homepage: http://www.gnugk.org/
