« June 2008 | Main | August 2008 »


July 25, 2008

Speculation over back door in Skype

Editor's Note:  Here are a couple thoughts I have about this.   First, you should always assume that every  major application out there mostly likely have some sort of remote access for governmental agencies to monitor criminals.  This is not paranoia, but if the application has encryption then you know the NSA has keys if it is distributed in the U.S.  Second, you really should not be doing anything illegal but you happen to find yourself astray of the law then you should not be using any of the high technology to conduct yourself in these ways.  I am in no way supporting any illegal acts, I am just giving helpful advice to my audience.  Lastly, this does not surprise me being the amount of users they have, it would be quite odd of our defense agencies could not  monitor this type of communication.

According to reports, there may be a back door built into Skype, which allows connections to be bugged. The company has declined to expressly deny the allegations. At a meeting with representatives of ISPs and the Austrian regulator on lawful interception of IP based services held on 25th June, high-ranking officials at the Austrian interior ministry revealed that it is not a problem for them to listen in on Skype conversations.

This has been confirmed to heise online by a number of the parties present at the meeting. Skype declined to give a detailed response to specific enquiries from heise online as to whether Skype contains a back door and whether specific clients allowing access to a system or a specific key for decrypting data streams exist. The response from the eBay subsidiary's press spokesman was brief, "Skype does not comment on media speculation. Skype has no further comment at this time." There have been rumours of the existence of a special listening device which Skype is reported to offer for sale to interested states.

There has long been speculation that Skype may contain a back door. Because the vendor has not revealed details of its proprietary Skype protocol or of how the client works, questions as to what else Skype is capable of and what risks are involved in deploying it in an enterprise environment remain open.

Last week, Austrian broadcaster ORF, citing minutes from the meeting, reported that the Austrian police are able to listen in on Skype connections. Interior ministry spokesman Rudolf Gollia declined to provide heise online with a comment on the matter. He did, however, offer general comments on the meeting, which were, however, contradicted by other attendees.

Click Here to Continue Reading 

 

Posted by Dal at 10:45 AM | | TrackBacks (0) Posted to Skype

Kaplan Launche Online CISCO Certification Programs

Kaplan announced the launch of three new online Cisco certification programs designed to provide students with the knowledge to seek employment in the high-demand Information Technology field. "According to the Bureau of Labor Statistics, Information Technology is the fastest growing sector in the economy, with an expected growth rate of 68 percent through 2012," said Lisa Rosenzweig, the Executive Director at Kaplan Continuing Education.

"With continuous advancements in technology and a growing focus on security, it's increasingly important for IT professionals and those seeking employment in IT to update their technology skills. Career IT training can help keep skills fresh."

Kaplan's three new certificate programs, which include a Cisco Certified Entry Networking Technician (CCENT) certificate, Cisco Certified Network Associate (CCNA) certificate and Cisco Certified Network Professional (CCNP) certificate, are designed to prepare students for positions as systems engineers, systems administrators, or information security specialists.

The Cisco Certified Entry Networking Technician (CCENT) Certificate program is designed to teach students how to install, setup, operate and troubleshoot a small organizational branch network. The courses will include the fundamentals of networking, routing and switching; how to connect to a Wide Area Network; basic wireless and security concepts; configuring and operating IOS devices; and how to configure simple networks. The CCENT is the first step towards the CCNA and CCNP certifications.

The Cisco Certified Network Associate (CCNA) Certificate program is designed to teach students to install, setup, operate and troubleshoot a medium-size routed and switched network. The training includes lessons in implementing and verifying remote site connections in a Wide Area Network, and implementing network security and mitigating security threats. The courses will also cover network types, media, and the TCP/IP and OSI network models; how to identify IP routes and manage IP traffic; and how to establish point-to-point and frame relay connections.

The Cisco Certified Network Professional (CCNP) Certificate program is designed to teach students to install, setup, operate and troubleshoot large enterprise local and wide area networks with 500 or more nodes. Students will receive training in managing routers, switches and enterprise applications that integrate wireless networking, security and voice systems into a network.

KCE's Cisco IT training is self-paced and accessible virtually anywhere and any time. Each Cisco certificate program can be completed in six months or less. The Kaplan Continuing Education certificate programs offer online career education and training to professionals looking for a real-world education coupled with the flexibility of web-based learning. KCE programs are designed to provide students with the educational foundation they need to distinguish themselves from the competition. 

Kaplan Continuing Education is part of Kaplan University, which is based in Davenport, IA. Kaplan University is regionally accredited by The Higher Learning Commission (HLC) and is a member of the North Central Association of Colleges and Schools (NCA). The University offers more than 100 academic programs and currently serves more than 41,000 online and on-ground students. To learn more, visit www.kaplanuniversitynews.com.

Source: PR Web 

Posted by Dal at 10:41 AM | | TrackBacks (0) Posted to Cisco

July 23, 2008

Asterisk 1.4.21.2 and 1.2.30 Released

The Asterisk.org development team has released Asterisk versions 1.4.21.2 and 1.2.30.

Both of these releases include fixes for two security issues. Both of these issues affect users of the IAX2 channel driver. For more details on these vulnerabilities, see the published security advisories, AST-2008-010 and AST-2008-011.

AST-2008-010: Asterisk IAX 'POKE' resource exhaustion
  - http://downloads.digium.com/pub/security/AST-2008-010.html

AST-2008-011: Traffic amplification in IAX2 firmware provisioning system
  - http://downloads.digium.com/pub/security/AST-2008-011.html

Thank you for your continued support of Asterisk!

Posted by Dal at 03:27 PM | | TrackBacks (0) Posted to Asterisk Releases

July 22, 2008

Announcing AstriDevCon 2008

On September 26-28 in Glendale, Arizona, a group of Asterisk developers will be getting together for three days of hacking, coding, testing, designing and otherwise beating on the Asterisk code base.
 
The event will be hosted at the Renaissance Glendale Hotel and Spa immediately following AstriCon 2008 and will be low-key and open only to serious developers and contributors. We are expecting to keep the attendance to 50 people or less, including many members of the Digium Asterisk development team (currently around 15 people).

Each attendee will be responsible for their own travel, meals and lodging costs; the conference sessions will only have a beverage bar and light snacks. There will be free wireless Internet access in the meeting room and in the guest rooms at the Renaissance.

This year we plan to focus our efforts on media stream handling and codec (format) negotiations; at the previous two DevCons we have talked about these topics but not made any significant progress, and it's time to get the work done to improve Asterisk so it can do a better job handling complex media streams and changing codec requirements.

If you are interested in attending, send an email application to Kevin Fleming at kpfleming@digium.com including your name, your involvement with Asterisk (or related projects), and who is sponsoring your attendance (if any company or person is doing so). We will accept applications until August 15th, and then make the decisions about who we can accept based on their level of contribution and the space available at the event.

You can find accommodation and travel information on the AstriCon website at AstriCon.net

Posted by Dal at 10:22 AM | | TrackBacks (0) Posted to Asterisk Development

July 18, 2008

AT&T spending reduction hitting Cisco

Talk of AT&T cutting back on its capital expenditures for this year have hit Cisco's stock as well as the prospects for other telecom equipment vendors. Credit Suisse this week downgraded Cisco to neutral from outperform on reports that AT&T will cut back on its 2008 capex budget. Credit Suisse estimates that AT&T spends between $500 million and $1 billion annually with Cisco, or almost 2.5% of Cisco's annual revenue.

Meanwhile, another investment firm issued a bulletin this week that states AT&T capex cuts are likely, though modest in scale. UBS Warburg estimates that AT&T will cut $500 million from its 2008 capex budget, or about 2.5%. The firm says it would not rule out future cuts "if business fundamentals further deteriorate" at AT&T.

A slowdown in spending among the telcos would not be a big surprise given the weak macroeconomic environment, particularly in the US. But it would hurt telco equipment vendors who are already trudging through the muck of a sluggish economy.

Click Here to Continue Reading 

 

Posted by Dal at 09:00 AM | | TrackBacks (0) Posted to Cisco

July 14, 2008

Massive DNS security problem endangers the internet

US-CERT and other security experts have warned of a critical design problem affecting all DNS implementations. The Domain Name Service is responsible for converting readable names like www.heise-online.co.uk into the IP addresses that computers can handle, such as 193.99.144.85. DNS is thus the internet equivalent to a phonebook and without it, nothing works. Anyone who takes control of it can control the internet.

In order to avoid repeating name resolution for every network connection, many systems store the results in a cache for a certain length of time. If an attacker succeeded in slipping false addresses into such a cache, he could divert any network connections to systems under his control. That would open up the possibility of enormous phishing campaigns and the large-scale theft of passwords, credit-card data, and even access data for online banking.

The fundamental problem with the DNS is that the responses to queries can, in principle, be faked. For that reason, current systems use a randomly selected 16-bit transaction ID for each query. If the answer also contains this ID it comes from the correct server, and the prospect of an attacker guessing it is negligibly small.Amit Klein, however, has already shown several times how implementation errors, say in the random-number generator used, can be exploited to enable DNS cache poisoning.

Vulnerability notes from US-CERT say the security expert Dan Kaminsky has now discovered a general method for reducing the odds sufficiently, for cache poisoning to be implemented effectively. The method is evidently not based on defective implementation, but on a cunning attack scenario that markedly increases the attacker's chances. Kaminsky doesn't want to reveal the details until the Black Hat conference in August. Almost all noteworthy vendors are affected, including ISC (whose BIND is the most widely used server), Cisco and Microsoft.

Click Here to Continue Reading 

 

Posted by Dal at 11:39 AM | | TrackBacks (0) Posted to VoIP Security

Snom rolls out another HD Voice offering - klarVOICE

snom technology AG, developer and manufacturer of IP phones for the commercial and residential markets, announced today the next generation of voice: snom klarVOICE. This wideband handset, which can be adapted to all snom VoIP telephones, captures more than twice the spectrum of voice frequencies than standard phones enabling phone conversations with greater clarity and richness.   


“Telephones have remained unchanged for so long, most people have no idea what limitations they have lived with,” explains Dr. Michael Knieling, Executive VP of Marketing and Sales. “But VoIP also lays the groundwork for a revolution in the quality of voice we communicate with!”
 
The new snom klarVOICE handset works with the codec G.722 This codec is able to shrink the bit rate of the voice channel down to 12.65 kbps, offering excellent quality. In standard narrowband VoIP calls, the voice signal is sampled at 8,000 times per second, resulting in an effective voice pass-band of about 200 to 3,300 Hz. The new wideband handset offers a doubled sample rate, providing an effective pass-band of 50 to 7,000 Hz.
 
Use of snom klarVOICE results in a much higher fidelity voice call, more akin to talking to someone in the same room rather than over a phone.
 
Pricing and Availability
 
The snom klarVOICE  handset, which can be adapted to any existing snom 3xx series VoIP phone (snom 300, 320, 360, 370) using snom’s latest firmware release (Version7.1.33), is available for an MSRP of  US$32.50. snom 3xx series are the industry’s premier, business-class, SIP VoIP phones and feature a global executive design and styling with a large, high-resolution greyscale display screen, programmable function keys and advanced business calling features.
 

Posted by Dal at 10:21 AM | | TrackBacks (0) Posted to VoIP Hardware

July 11, 2008

libpri version 1.4.5 Released

The Asterisk development team has released version 1.4.5 of libpri. This release was made solely to correct a problem introduced in version 1.4.4.

In February of 2008, a change was made in libpri to support inband audio (progress) when the far end of a PRI circuit issues a RELEASE message, indicating they want to terminate the call. This change was necessary
for some applications where the telco providing the circuit wants to provide a 'release message' before actually hanging up the call.  Unfortunately, many users have PRI circuits that are not compatible with this behavior, and this results in their PRI B-channels being left open for anywhere from 2 to 20 seconds (or more) before the calls are finally terminated.

This version of libpri retains the ability to operate in this mode, but it is now a configurable option which defaults to being 'off'. The next releases of Asterisk will have configuration options to turn this behavior on if the user desires.

Thanks for using libpri and Asterisk!

Posted by Dal at 12:10 PM | | TrackBacks (0) Posted to Asterisk Releases

July 09, 2008

Junction Networks' VoIP Service Preconfigured for Microsoft Response Point

Editor's Note:  We have been using their SIP termination service for almost 2 years now and it has been great.  I am really glad to hear MS choice a solid company with good support.  Kudos

Microsoft has selected Junction Networks as a preferred SIP trunking and gateway service provider for its Microsoft Response Point small business phone system (PBX). The Response Point Service Pack 1, generally available today, will feature services from Junction Networks pre-configured for simple account activation and maintenance.

"Small-business people who want their PBX in-house and IP-based have another important decision to make in VoIP service providers," said Rob Wolpov, president, Junction Networks. "They can realize significant telecom savings, flexibility and location independence, but only if the service is reliable, and voice quality comparable with the PSTN.
 
We view Microsoft's choice as a major validation of our service quality." Microsoft chose Junction Networks for the provider's strict adherence to SIP standards, its commitment to customer satisfaction and for its established phone service for small to medium-sized businesses.
 
Response Point customers will enjoy the convenience of Junction Networks' simple account set-up process: The SIP-based voice service from Junction Networks is pre-configured in the Response Point Administrator software. A small business needs only a working Internet connection to acquire service and lines in minutes. "We thoroughly tested the service from Junction Networks and are pleased to align with them to deliver Response Point as a complete VoIP solution for small businesses," said Xuedong Huang, general manager of Microsoft Response Point.
 
"With our focus on ease of use, and Junction Networks' high-quality SIP trunking and gateway service, small businesses will experience all the benefits of the magic blue button for voice dialing with reliable VoIP service." Response Point is sold with unique "blue-button"-equipped IP phones from Aastra Technologies Ltd., D-Link Corp. and Quanta Computer, and employs speech recognition that allows users to perform basic and advanced phone functionality with spoken commands.
 
Junction Networks is offering Response Point customers access to a special promotion that waives the $9.95 monthly service charge and supplies two free phone numbers, one of which is toll-free, for the first 30 days. The new account will include a credit of $7 toward inbound and/or outbound calling.
 
Junction Networks does not require a long-term contract or commitment, and there are no penalties for cancellation at any time. Junction Networks recently launched its own authorized reseller program, in addition to supporting Microsoft's broad network of resellers, to help it reach and service small-business customers with Microsoft's offering and its own trunking/gateway service.
 
Source:  Business Wire 
 

Posted by Dal at 12:21 PM | | TrackBacks (0) Posted to VoIP News

Cisco takes $78M haircut on VMware investment

Cisco took a $78 million haircut on its VMware stock investment after it was announced today that VMware co-founder and CEO Diane Greene had been sacked. Perhaps most telling of the unpleasantness surrounding today's event is that Diane Greene is no longer even acknowledged as a co-founder on the VMware leadership/co-founder web page.

Representing Cisco's investment on the VMware Board of Directors is retired Cisco CFO - Dennis Powell. Of the seven directors on the VMware board who made the decision to sack Greene, only Powell and Renee James are not either EMC executives or EMC directors. James sits on the VMware board representing the investment made by Intel Corporation in VMware stock.

Cisco's 6 million VMware shares have lost $507.8 million of their value since October 31st - 2007, leaving Cisco with only a $91.1 million profit on its original $150 million VMware investment.

Source: Network World 

Posted by Dal at 11:58 AM | | TrackBacks (0) Posted to Cisco

July 03, 2008

NJ admits defrauding Cisco of millions of dollars

A former computer contractor for the City of Newark has admitted he cheated technology giant Cisco Systems of several million dollars. In pleading guilty Wednesday to mail fraud and tax evasion, Michael Kyereme admitted he fraudulently obtained computer parts from Cisco and then resold them.

The 41-year-old Piscataway man faces up to 20 years in federal prison when sentenced in November. He remains free on $500,000 bond. When arrested in March 2007, authorities said Kyereme cheated San Jose, Calif.-based Cisco of more than $10 million, but no figure was specified Wednesday.

Source: MercuryNews

Posted by Dal at 01:31 PM | | TrackBacks (0) Posted to Cisco

July 01, 2008

MagicJack VoIP Phone Service Climbs VoIP Ranks

Note:  I have a friend that is using this device.  It does work pretty well.  My main question is if this growth and model will be a sustainable business model.  I will be watching close too see develops in the future or any signs of trouble. 
 
Telecommunications firm YMax is on track to reach 550,000 subscribers by June through its MagicJack VoIP phone and will begin selling the device through QVC next month, said company founder Dan Borislow.  The VoIP newcomer is selling roughly 8,000 MagicJacks a day, Borislow said. Each $40 device comes with a year’s worth of unlimited nationwide calling (inbound and outbound).

At 500,000-plus subscribers, YMax would vault ahead of every pure-play VoIP provider, save Vonage, currently the No. 1pure-play provider with roughly 2.6 million subscribers. YMax will know whether its customers will renew their subscriptions starting in January and February of 2009, a year after the MagicJack began to roll out to a large audience, Borislow said.

Launched last year, the MagicJack plugs into a computer’s USB port and features an RJ11 jack for connecting a traditional home phone. The service supports caller ID, voicemail, voicemail-to-email and call forwarding.

The device works when the computer is on and will forward inbound calls to a cellphone if the computer is off.

The company’s hook is super-low-cost calling. After the first year is up, it costs $20 for a full year of nationwide, all-you-can-dial calling.

“We originally thought that business travelers would use this, but what we’ve found is that in these economic times, people are desperate to get rid of their landline phone,” Borislow said. The most MagicJacks have been sold in Florida and California, respectively, where economic times are tough, he added.

Click Here to Continue Reading 

Posted by Dal at 01:33 PM | | TrackBacks (0) Posted to VoIP Hardware

AT&T Sets 3G iPhone Pricing

 

Note:  I will be upgrading day 1.  I can't stand the  EDGE network.  The name serves it right because everytime I use it, I feel like I am on the edge of the network. 

The 8-GB 3G iPhone will only cost customers $199 if they sign up for a two-year contract, AT&T said Tuesday. AT&T also revealed voice and data plans and what customers need to do to be "iReady" when Apple's 3G second-generation iPhone hits the streets July 11. "We can't wait to offer iPhone 3G to our customers, and we want to make sure the buying process is as easy as possible," said Ralph de la Vega, president and CEO of AT&T's wireless unit, in a statement. "Considering all the great new features of iPhone 3G, we think our pricing and monthly plans present a tremendous value for consumers and businesses alike."

The 3G iPhone's 8-GB model will sell for $199 with a two-year contract to new customers and current iPhone owners, but existing AT&T customers who are not eligible for upgrade discounts will be charged $399 for the same device.

New customers, current iPhone owners and those eligible for upgrade discounts can get the 16-GB 3G iPhone for $399. AT&T customers who aren't eligible for upgrade discounts will have to shell out $499 for the 16-GB model.

In the future, AT&T said it will offer a contract-free iPhone option for $599 for the 8-GB and $699 for the 16-GB.

AT&T said it determines eligibility on the length of time remaining on a customer's current contract and payment history. Current customers upgrading to the 3G iPhone will be charged an $18 upgrade fee, and new customers will pay AT&T's standard $36 activation fee.

AT&T iPhone customers can choose between the company's various AT&T Nation plans combining voice and unlimited data transfer. The cheapest, with 450 anytime minutes and 5,000 night and weekend minutes, costs $69.99 per month. The unlimited plan costs $129.99 monthly. All include visual voice-mail and nationwide long distance and roaming.

Source: CRN 

Posted by Dal at 01:14 PM | | TrackBacks (0) Posted to VoIP News

Search



Recent Posts

Tech Topics

Archives

Subscribe to this blog's feed
[What is this?]
Powered by: Dal