Skip to content
HomeSIP Network Operators Conferences (SIPNOC)SIPNOC 2017General Session - Day One2. Screaming Frogs and Crawling Bots

2. Screaming Frogs and Crawling Bots

[featured_image]
Download
Download is available until [expire_date]
  • Version
  • Download 103
  • File Size 694.17 KB
  • File Count 1
  • Create Date December 4, 2017
  • Last Updated December 4, 2017

2. Screaming Frogs and Crawling Bots

Presented by Presented by Jon Chleboun, Member of Technical Staff, ECG.

“PlcmSpIp”
“UserAgent: Screaming Frog SEO Spider/8.1”
“GET /dms/VVX500/user0004f28f67e3.cfg”
“GET /dms/VVX500/user0004f28f67e4.cfg”
“GET /dms/VVX500/user0004f28f67e5.cfg”

This is all that is necessary for anyone on the planet to be a major thorn in your side.
Crawling for poorly-secured device configuration files (and the SIP passwords that they contain) has become a major challenge to VoIP network admins, and one of the tougher VoIP fraud vectors to close.
Client certificate authentication offers a much more robust alternative to usernames and passwords. While it offers many advantages in security, and building it greenfield is straighforward, there are a myriad of operational challenges associated with migrating from unsecured files to client certification secured files.