Hi, You are talking about 2 totally different things here. If I am calling to someone (I am using the regular PSTN) and he is using an IP phone it is seamless from your end. His PSTN-VoIP gateway will convert the signaling and voice samples from the PSTN based protocols to VoIP based protocols and vice versa. VoIP Network -------|GW|------ PSTN The risk here is to abuse the gateway from the PSTN side (GW/IP PBX). If you get yourself on the GW/IP PBX that’s it... Ofir Arkin [ofir@sys-security.com] Founder The Sys-Security Group http://www.sys-security.com PGP CC2C BE53 12C6 C9F2 87B1 B8C6 0DFA CF2D D360 43FA -----Original Message----- From: rginskiat_private [mailto:rginskiat_private] Sent: å 01 îøõ 2002 20:25 To: pen-testat_private Subject: VOIP as Gateway I have read the particulars to VOIP and securing VOIP as an application. However, has anyone performed any pen testing or research on using VOIP as a gateway? For example, someone from the outside (not part of the VOIP network) dialing from home (etc) to an organization's VOIP-enabled phone. Then, using the VOIP-enabled phone as a gateway to the rest of the IP network? TIA ------------------------------------------------------------------------ ---- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/ ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
This archive was generated by hypermail 2b30 : Mon Mar 04 2002 - 11:47:54 PST