RIP Russell Shaw

Posted on by
Reply

russ
For those who have not heard, Russell Shaw, one of the leading authorities in the VOIP world, passed away last March 14. He passed away in a hotel room in San Jose – what the reason was, remains unclear. According to a post at ZDNet, Russell’s girlfriend said “that Russell’s funeral will be a week from today (March 23) in Florida, but didn’t have much more detail than that at the moment. It’s also unclear what caused Russell’s death, but “he wasn’t feeling well at all Thursday night” and “he thought he could sleep it off.” We’ll pass along more details about the funeral home and other items as we get them.”

Anyone who has been involved in VOIP in the past years would recognize Russell Shaw as the foremost authority on the BlackBerry – he was THE BlackBerry Blogger for for ZDNet. Here is the announcement of his death at ZDNet:

Dan and I were emailed by Russell’s girlfriend Ellen, but details are still sketchy (see Techmeme). He died on March 14 in a hotel room. Like Marc Orchant, Russell, who covered VOIP, broadband and Research in Motion for ZDNet, passed without a hint that something was wrong. He was always quick with a joke and as Matthew Miller noted was an enthusiastic blogger.
To lose two people in the ZDNet family in just a few months is shocking. In fact, Russell, who just turned 60 in November, was on his way to cover the Emerging Technologies Conference and VON. The last note I got from him was this.

In san jose hotel. After three planes, from alabama have come down with something.
Resting now posts to resume later today or tomorrow
Russ
Sent via BlackBerry by AT&T

It sounded like the same bug we’ve all had for the last week. And then last night about 6:45 p.m. EDT, I got an email from Russell’s girlfriend saying he passed away. He never made it to VON. She’s trying to contact people at VON and the other show he was going to attend. His funeral will be held in Florida.

For us who looked forward to his coverage, we will certainly miss him. Rest in peace, Russell Shaw.

Second Digium|Asterisk World Announced

Posted on by
1

digium asterisk

Here is a piece of news that would please a lot of VOIP enthusiasts out there.  Digium just announced that the second Digium|Asterisk World would be held from the 18th or March to the 19th of March.  Here is the press release:

Digium®, Inc., the Asterisk® Company, today announced plans for the second Digium|Asterisk World, a conference targeted at business executives responsible for voice and VoIP within their companies. The event, scheduled from March 18-19 at the McEnery Convention Center in San Jose, Calif., builds off the successful launch of Digium|Asterisk World last fall.

Digium|Asterisk World is the first Asterisk event focused purely on Asterisk for business. It will be co-located with Spring VON, the longest running and best respected IP communications event in the industry. Attendees will have access to both shows and be able to see demonstrations of the latest open source IP communications technology. The show will feature new announcements from Digium and Digium’s innovative Switchvox telephony system will be demonstrated on both days.
Digium Founder and CTO Mark Spencer will deliver the Digium|Asterisk World keynote address on Tuesday, March 18 at 12:30 p.m. The presentation, “Why does Digium|Asterisk World Exist?” will focus on the role Asterisk plays in successful businesses. Digium CEO Danny Windham will deliver a keynote address at VON, “An Open Source VoIP Primer,” on Wednesday, March 19 at 9:30 a.m. that will examine open source trends and business models.
“As more companies turn to open source IP, Digium|Asterisk World’s focus on Asterisk for business makes more and more sense,” said Windham. “The wide range of insights available at Digium|Asterisk World will be a treasure trove of information that service providers, VARs, systems integrators or anyone rolling out IP communications won’t be able to find anywhere else.”
Other topics to be covered at Digium|Asterisk World include:
•    Best business practices in implementing Asterisk solutions.
•    The strategic purpose of open source.
•    Wild and crazy things you can build with open source telephony.

Registration for Digium|Asterisk World is open at: http://www.digiumasteriskworld.com/2008/sanjose/web/

You still have a day left – go ahead and register!

Toktumi – New VOIP App

Posted on by
1

Toktumi

They say that when a lot of people start jumping into the bandwagon, then you can consider the activity a success. Take mobile phones, for example. In the beginning, only the relatively rich and important people had to have them. After a while, even the average person used mobile phones. Today, almost everyone carries a mobile phone around. More so, more and more businesses are venturing into this industry.

The same thing could be said of VOIP. In the beginning, there were only a handful of VOIP providers. More so, there were even less people who knew about VOIP and used it on a regular basis. Well, anyone who has been following the goings on in the world of VOIP would know that it has become a success and seems to continue on this path in the unforeseeable future.

Furthermore, if the emergence of new VOIP apps and companies is any indication, then we can declare for sure that VOIP is here to stay. Here’s a new addition to the plethora of VOIP apps available – Toktumi. This app is developed by a “who’s who” of VOIP – Peter Sisson – and is basically a phone service that is PC-based. Toktumi is not that new, if you think about it, as it has been in operation since 2006, albeit through a private beta only. Now, however, consumers everywhere can have a taste of what Toktumi has to offer for free. Of course, it is only free if you call other Toktumi clients. For other phones and other VOIP service calls, charges apply.

So what does Toktumi have to offer? Why should VOIP enthusiasts even think of trying it out when they are already using a great VOIP app? For one, Toktumi is supposed to be a breeze when it comes to installation. They are actually targeting small businesses for their main market and their 5-minute installation should present no problems even for the “un-techie.” Some features of Toktumi include conference calls, assigned phone IDs, inbound calling (but of course!), voicemail, and auto-attendant forwarding.

Rafe Needleman at Webware says that Toktumi is just like Skype – but for grown ups. So what does he mean? He didn’t really expound on this on his article but sums it up as being a treasure because it “solves a real need” without bleeding the customers dry. That makes sense, doesn’t it?

Got VOIP Spam?

Posted on by
1

SPAM
Did you know that they can spam VOIP just like they spam e-mails? Whoever “they” may be, the threat may very well be quite real and has actually been given a name. “Spit” stands for spam attacks against internet telephony connections. Alright, I do not know who coined this term and whether I think it is clever or just plain silly. Still, that is beside the point – it might exist and might pose a problem in the future.

According to the Heise Online News, the Internet Engineering Task Force is going to be working on this issue over the next 6 to 12 months. Yet is there really a threat? According to Jon Petersen, “there was no evidence at the present time that a “spit” problem existed. In his opinion it was still, at best, theoretical. A representative of the NEC Lab in Heidelberg, on the other hand, said that work on possible solutions to “spit” had already been going on there for three years. At present, he said, the “spit” figures were still small, but “spit” was expected to become a serious problem as internet telephony became more widespread.”

However, if spit does become a serious threat, some people are concerned about the consequences:

“The costs incurred if we do nothing are very high,” warns SIP developer Henning Schulzrinne of Columbia University . It had taken a long time before anyone reacted to the now-familiar email spam, he pointed out, and now the implementation of countermeasures was struggling along behind the problem. Schulzrinne is one of the authors of an internet draft that contains preliminary recommendations. “Do we really want to wait until we have a VoIP botnet problem?”, Schulzrinne asked.
As with email spam, the developers who are already working on possible defences have no magic recipe against “Spit”. Among the possible options mooted are solutions involving the identification and authentication of callers, statistical solutions – meaning the blocking of mass calls emanating from one account – or defence through the cost of making a contact (something that was considered for email, but was swiftly rejected).

I tend to lean towards the side of caution here. I would rather have people working on this as early as now and ready to face the threat when it does arise. How about you? What do you think about all this ruckus?

UAE: VOIP Services Banned

Posted on by
2

person waiting on phone

For one reason or another, the “good” things in life get some flak in certain parts of the world. I suppose we shouldn’t be surprised anymore. There are so many things that have gone down this path. More so, there are so many factors that come into play – we cannot really expect uniformity when the world is so diverse. Still, as I was browsing the news online about VOIP today, I was a bit surprised at the fact that the United Arab Emirates has placed a ban on VOIP services in the country – including the famed Skype! According to the report published by Gulf News:

The ban on Skype and other Voice over Internet Protocol (VoIP) services in the UAE will continue and these services will be allowed only through licensed telecommunication operators – etisalat and du, a top Telecommunications Regulatory Authority (TRA) official said on Sunday.
“VoIP for everyone is still under consultation. No timeframe can be set on when that’s going to be allowed,” TRA director general-board member, Mohammad N. Al Ganem, told Gulf News on the sidelines of a TRA event here.

“We are doing a lot of consultation and we are looking into what’s happening around the world with regard to VoIP. However, we are taking it very seriously,” Al Ganem said. He said the industry is being consulted on the issue. “Hopefully, once we finish with the industry consultation, we will look at it,” Al Ganem added.

As per prevailing TRA policy, all VoIP services that use public internet are prohibited.

To be honest, I had to read through the news article twice to fully grasp what is going on over there – and even then, I do not know if I truly understand the situation in the UAE. I think that it is not a reaction against VOIP itself. I have this impression that it is more of a government regulation issue with communications. Else, why wait on the TRA to make it “legal?” However, in the first place, I do not understand why VOIP using public Internet is prohibited. I might be missing something here, I don’t know. Does anyone know anything about the whole thing?

I think I have taken the Internet and VOIP for granted. When I read news like this, I believe it all the more.

Best Open Source VOIP Applications

Posted on by
Reply

VOIP

We just love lists, don’t we? Since we are into VOIP in this blog, I thought why not present a list of the best open source VOIP applications? Lucky for me, I didn’t have to look far for this sort of information – I ran across an extensive list presented by Virtual Hosting Blog. I picked out some of the items on the list. If you want the whole thing (it is quite long), you can see the whole list of the top 50 open source VOIP apps.

SIP Proxies

  • OpenSer: OpenSER has been described as a “mature and flexible” SIP server so it’s no surprise that it’s popular among users. OpenSER development began with FhG FOKUS SIP Express Router, but then diverged into its own feature-laden software package that was released in 2005. Since then it’s been exhibited around the world, and makes a great addition to Linux systems looking to employ VoIP technology.
  • VOCAL: Open source VoIP developers can benefit from the software and tools found in VOCAL. Developed through the Cisco sponsored labs at Vovida, VOCAL is fully customizable to business needs and can provide call routing, billing information, call control and more in an easy to control and maintain Linux based system. It’s been successful due largely in part to its immense capability for adaptation and scalability, and likely will only see further integration into business systems in the future.

SIP Clients

  • Linphone: Linphone is promoted as a solution to help users communicate more freely over the Internet using voice, video and text messaging. Recent updates to the program have made it even better, solving many compilation issues while adding improved interoperability and new features. While currently only stable on Linux systems, development is under way for a Windows version as well.
  • PhoneGaim: If you haven’t heard of PhoneGaim you’ve likely heard of its proprietary counterpart Gizmo Project. While it doesn’t have the instant name recognition of its VoIP cousin Gizmo, PhoneGaim is still a product to take note of. Developed in an attempt to challenge Skype, the program is loaded with integrated features that help make the VoIP experience rewarding, even for those just using the software at home.

PBX

  • Asterisk: Asterisk is perhaps the greatest open source VoIP success story of them all. It is the leading open source telephony engine and tool kit and is used in thousands of servers and VoIP setups all over the world. What makes it so great? The standard system supports many features available in proprietary PBX system like voice mail, conference calling, interactive voice response, and automatic call distribution but also has the versatility to be adapted and personalized based on business or individual needs.
  • OpenPBX: Developed by Australian company Voicetronix, OpenPBX is a popular solution both with small offices and with large call centers. With features like unlimited voicemail, auto-attendant, automatic call distribution, music on hold and call parking it’s easy to see why. It also has the advantage of highly compact Perl code, meaning it’s very easy to customize and extend.

Now why aren’t I surprised that Asterisk is there? ;)

Keeping Your Voice Calls Confidential

Posted on by
1

Zfone GUI
Everyone knows this – IP voice calls can be prone to eavesdroppers. Yup, even the virtual walls have ears. Whether you are using VOIP for business or for personal purposes, I am quite sure that you would rather have your conversations private, right? Though VOIP has tons of positive points on its side, it is a sad fact that it could be more prone to eavesdropping than wired telephones. How so? It is because of a simple thing – VOIP has no wired connection that would require an eavesdropper to tap into the wires, something that might not be that easy to do without being detected. With VOIP, however, all one needs to listen in on another person’s conversation is to intercept the data that is being transmitted over the network. With the proper tools, anyone can capture and analyze the data – in effect, listen to your conversations.

How do you ensure that no one is listening in on your voice calls? It is simple – by using some sort of encryption method. Encrypting your voice calls is a simple matter and will make it almost impossible for other people to snoop on your conversations.

One popular method of encrypting VOIP calls is Zfone. This software is developed by Phil Zimmerman and is free to download. It is perfect for VOIP users who do not have much know how, technologically speaking. All you need to do is to download the program, install it and you’re good to go. One drawback of the Zfone is that in order for your call to be secure, the party you are calling has to have it installed as well.

Another method of encryption is what is dubbed as built-in encryption. It is basically what VOIP clients do. Skype, for example, has built-in encryption – the user does not have to do anything in this regard.

For businesses, Transport Layer Security (TLS) and IP Security (IPSec) seem to be the best bet. These two methods are quite robust and prevent external unauthorized tampering. The level of security they offer makes them very attractive for business owners. To date, TLS seems to be gaining more ground in terms of popularity simply due to the fact that it is more efficient and does not take up as much bandwidth as IPSec does.

There are other ways of keeping your voice calls confidential. So what’s keeping you? Take that step and rest assured that no one is eavesdropping on you.

Asterisk on the iPhone?

Posted on by
2

iphone asterisk
I love Apple – what can I say? I know some of you may not agree with me but here’s a piece of news worth sharing. For all those iPhone fans out there, Asterisk Voicemail for the iPhone is coming out very soon. I ran across a developer’s announcement about his project on ChrisCarey.com. This is what he has to tell you:

Asterisk Voicemail for iPhone allows you to check your voicemail messages on your house or business line from your iPhone. You can think of it as “Visual Voicemail”, but for your Asterisk PBX numbers instead of your AT&T cell number. The technology behind it is Asterisk (The Open-Source PBX), with iUI, Joe Hewitt’s UI interface for iPhone. This software can be installed on any Asterisk server (though you will want to use one that is available via the Internet) and will allow you to check messages in multiple folders, listen to messages, delete messages, move messages, and change voicemail settings – all from your iPhone.

Contact me with any questions or comments.

This software is unreleased. Most of the features are fully functional, but I need to clean up certain portions of the code before releasing it in order to avoid public ridicule. This software will be released under the GPL or some other free license.

I know, it’s more of a teaser right now, but hey, with something like this, all you need is a teaser – for now. I am sure that hordes of iPhone fans using VOIP are going to be thrilled about this. In fact, I have seen several blogs and web sites already featuring Chris Carey’s announcement. It is not a surprise, really. For those who are already using Asterisk and have iPhones (I am not sure about the number of these people), this is something to look forward to.

So what is the potential of this development? I suppose you can describe it in one word –HUGE. Imagine being able to access your voicemail messages anywhere. With today’s trend of everything going mobile, this is the perfect solution to the traveling individual’s needs. Chris Carey, you rock!

Top VOIP Security Threats Continued

Posted on by
Reply

vishing

So in the last post, you saw how DoS attacks and eavesdropping would be big concerns this year. Here are the last 3 points that Jim Higdon wrote about earlier this year:

3. Microsoft Office Communications Server: Hackers love attacking Microsoft, and Microsoft loves being unprepared. VIPER Lab predicts that hackers will find vulnerabilities in Microsoft Office Communications Server’s VoIP client and use it to access networks that had previously been secure, and the organization is not alone in reaching this conclusion. Network World blogger Mitchell Ashley suggests that Microsoft could learn from Vonage’s vulnerability to spoofing attacks.

I guess those of us who are using Windows are out of luck in this point. Then again, this is why business are leaning towards alternatives.

4. Vishing by VoIP: The FBI has been aware of vishing for nearly a year now, and the IC3 (Internet Crime Complain Center) recently released a report stating that vishing attacks are on the rise. With caller ID spoofing, the criminals can be very difficult to track, “due to rapidly evolving criminal methodologies,” according to the IC3.

Yup, first it was phishing, now it’s vishing.

5. VoIP Attacks Against Service Providers: These sorts of attacks will escalate, VIPER Lab predicts, because of readily available, anonymous $20 SIM cards. As UMA (Unlicensed Mobile Access) technology becomes more widely deployed to allow calls to switch from cell networks to VoIP networks, VIPER Labs warns that “service providers are, for the first time, allowing subscribers to have direct access to mobile core networks over IP, making it easier to spoof identities and use illegal accounts to launch a variety of attacks.” Such attacks include scripting “various flood, fuzzing and spoofing attacks,” according to VoIP blogger Rich Tehrani. “The hacker could set up multiple IPSec tunnels to various PDGs in the network or across multiple GPRS sessions [generating] up to 10,000 messages per second … equal [to] the traffic of 10 million users,” he wrote.

Knowledge is power. I hope that exposing these threats will help you make your VOIP system more secure.