Hacker News new | past | comments | ask | show | jobs | submit login

Fail2ban, not using IP based auth, and mandatory TLS/SRTP will generally cover your bases (ofc, Fail2ban should be banning any IPs attempting TCP/UDP registration or calling without SRTP).

Not really rocket science, but the VOIP industry is stuck in the 1990s when it comes to security practices related to their core offering. Its a terrible state of affairs!

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact