Posted by: Anonymous
on January 26, 2008 01:51 PM
Just the other day a co-worker's Trixbox (Asterisk VOIP server) got rootkited. How it happened was that he installed a soft-phone software on his PC. This software asked where the trixbox is and then asked for the root password to it. He thought that was a little odd but he trusted the soft-phone (which he says was from Amsterdam!). Days later we got complaints of port scanning. A complete reload of the server was in order. He's still kicking himself for this.