Bugtraq mailing list archives

Re: Bay Annex-Pri Privacy Issues

From: stpeters () NETHEAVEN COM (Dick St.Peters)
Date: Wed, 11 Aug 1999 10:53:17 -0400


Eric Vyncke writes:

DNIS, Dialed Number ??, is the destination phone number a remote user
   is dialling to


Dialed Number Identification Service, "dee-nis" digits or just
"digits" in telcospeak.  They're used to route calls.  E.g., a company
may have 100 phones on its PBX but expects never to have more than 24
in use at the same time, so it has only one T1 (24 lines).  When a
call comes in, the digits identify which phone was called.

CLID and DNIS are:
- provided by the Telco (and not 100% trustable -- the Telco could be
  hacked)


Saying DNIS could be hacked is like saying the destination address of
packets you get isn't trustable because your ISP's router could be
hacked.  It could happen, but it's not likely to be the first or worst
consequence.  You'd have bigger problems than incorrect DNIS.

--
Dick St.Peters, stpeters () NetHeaven com
Gatekeeper, NetHeaven, Saratoga Springs, NY

Current thread:

Re: Cisco 675 password nonsense, (continued)
- - - Re: Cisco 675 password nonsense Brian Elfert (Aug 06)
    - Microsoft Security Bulletin (MS99-027) Aleph One (Aug 06)
    - Re: Cisco 675 password nonsense Signal 11 (Aug 07)
    - Remote DoS of WebTrends Enterprise Reporting Server rpc (Aug 08)
    - sdtcm_convert Joel Eriksson (Aug 08)
    - NetBSD Security Advisory 1999-011 Ross Harvey (Aug 08)
    - MS IE FTP Folder Shell Extension Buffer Overflow s.hird () STUDENT QUT EDU AU (Aug 09)
    - [jen () ettnet se: sdtcm_convert] Joel Eriksson (Aug 09)
    - Bay Annex-Pri Privacy Issues lumpy (Aug 09)
    - Re: Bay Annex-Pri Privacy Issues Eric Vyncke (Aug 10)
    - Re: Bay Annex-Pri Privacy Issues Dick St.Peters (Aug 11)
- Re: Cisco 675 password nonsense The Tech-Admin Dude (Aug 03)
- Re: Cisco 675 password nonsense Francis Bodie (Aug 03)
- Cisco 675 password nonsense jobe smithe (Aug 09)