IP Communication Solutions Aimed At The Success Of Your Business™
Category : Security
SSL Encryption can be enabled within the ScopTEL GUI in order to do the following:
Secure https phone provisioning
Secure https GUI management
Encrypted SIP signalling
Encrypted SRTP
Supported IP Phone Vendors are: Polycom, Snom, Yealink
Download the how to document ScopTEL – Certificate Manager
Category : Security
Today, we proudly annonce an update to ScopTEL PBX to support TLSv1.1 and TLSv1.2 in WebGUI when using SSL encryption in order to secure communication on the Management interface.
Since the release of TLSv1, many changes have happened to both the development of TLS and the known attacks against the cryptographic protocol. TLSv1.1 and TLSv1.2 were both released in the mid to late 2000s which fixed many problems seen in TLSv1 but, unfortunately, adoption was meager at best. This left the door open to many attacks against the protocols in use (namely SSLv3 and TLSv1) including BEAST, CRIME, various cipher renegotiation and rollback attacks, and attacks on the RC4 encryption cipher.
In order to use new encryption protocols, you simply need to go on Server -> Packages Manager and click on Update Now.
If you want to update from SSH, you can type :
scopserv_yum update httpd scopserv-server
Category : Security
In addition to https://blog.scopserv.com/2015/01/product-bulletin-scopserv-vulnerability-cve-2014-1691-january-26-2015/
If your installation cannot immediately and fully be upgraded as per the product bulletin.
You may use this minimal upgrade method to upgrade the required packages (but it highly recommended a full upgrade is performed):
From the Linux shell execute (without quotations) ‘scopserv_yum update scopserv scopserv-core scopserv-framework scopserv-server’
After all packages are successfully updated then from the Linux shell execute (without quotations) ‘service scopserv restart’