When autoprovisioning is enabled the anonymous endpoint allow people to register as an anonymous peer.
An attacker can the brute force the autoprov code. The attacker will not get a valid username or password while doing that but it could consume resources in case of a ddos and it fill the asterisk log files and console with failed dial attempts.
When autoprovisioning is enabled the anonymous endpoint allow people to register as an anonymous peer.
An attacker can the brute force the autoprov code. The attacker will not get a valid username or password while doing that but it could consume resources in case of a ddos and it fill the asterisk log files and console
with failed dial attempts.