Asterisk Hacked

They have a problem with our Asterisk server, we hacked the Elastix administrator account and created an extension and they made ​​calls to Cuba.

I need help to improve security beyond Good Practices for Protection Against PBX Security

http://www.xorcom.com/files/techdocs/app-note-good-practices-for-protection-against-pbx-security-threats.pdf
WebserviceMXAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

PhonebuffCommented:
So, if you have been hacked then you should rebuild by hand from bare metal --

Your Firewall should prevent anyone outside your facility from accessing the GUIs.

See some of the notes on the PBXinaFlash forum on security and the use of IPTables.

======================
0
Dwibendu MoharanaSenior Voip  EngineerCommented:
Now a Days A lot of hacking attacks is going on using some script call mgtest.

using the vtiger backdoor they are inserting code in to elastix server and making international call.

You Can Use CSF(Central Security Firewall) A software based firewall to prevent anonymous attacks through public ip.

http://www.liquidweb.com/kb/csf-config-server-firewall-installation/

Also Need to Block Port 80 and 5060 via public ip.

Enable a anti-hack addons or Fail2ban in elastix it will send a mail if any one try to access you system.

in sip.conf make allowguest=no

In Elastix Turn off anonymous call advance settings.

Also You Can Refer To This link

http://automation.binarysage.net/?p=175
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Telecommunications

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.