[YMCS/YDMP Free Trial Program]Yealink would like to offer Free Trial Program of Yealink device management service for our current eligible customers. You can see the details below.
https://www.yealink.com/ydmp-freetrial-2020


Post Reply 
 
Thread Rating:
  • 0 Votes - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Are legacy phones a security risk?
Author Message
Tinov Offline
Junior Member
**

Posts: 1
Joined: Aug 2021
Reputation: 0
Post: #1
Are legacy phones a security risk?
I'm a home user. I have a SIP-T18P, I'm not sure how old it is probably 10 years or more.

Is it safe to use on my home network? I don't care about encryption of calls or the like. I'm just worried that it might provide an entry point for a hacker.

Is there any up-to-date firmware available?

My network is thus:
The phone is attached to an unmanaged switch which also has a home PC (cable connection) a work-provided thin client (cable connection), and a wireless access point attached (mobile phones access the network via this). The switch is connected by cable to a home router which is a DHCP server. The phone is set to get IP address by DHCP. The network addresses in use are unrouteable (192.168.x.x). Service provider is Sipgate.

Any opinions or comment most welcome.
08-19-2021 11:26 PM
Find all posts by this user    like0    dislike0 Quote this message in a reply
Phil2021 Offline
Junior Member
**

Posts: 12
Joined: Jul 2021
Reputation: 1
Post: #2
RE: Are legacy phones a security risk?
(08-19-2021 11:26 PM)Tinov Wrote:  I'm a home user. I have a SIP-T18P, I'm not sure how old it is probably 10 years or more.

Is it safe to use on my home network? I don't care about encryption of calls or the like. I'm just worried that it might provide an entry point for a hacker.

Is there any up-to-date firmware available?

My network is thus:
The phone is attached to an unmanaged switch which also has a home PC (cable connection) a work-provided thin client (cable connection), and a wireless access point attached (mobile phones access the network via this). The switch is connected by cable to a home router which is a DHCP server. The phone is set to get IP address by DHCP. The network addresses in use are unrouteable (192.168.x.x). Service provider is Sipgate.

Any opinions or comment most welcome.

If it is via NAT then it should not be reached from outside by an unsolicited connection. If you go to grc.com and find the Shields Up option, this allows you to scan all the common service ports, see if you have any open ports, if they all come back as stealth then you are quite safe from any outside attacks as they can't get to anything.

Of course nothing is 100% secure, if your router has security vulnerabilities then someone might be able to hack a route through to your local network, if the phone has a vulnerability they could hack into that (bypass the password) then download any contact lists or use your Sipgate credentials to make calls, but a lot of things have to line up for that to happen.

Hope that helps.
08-20-2021 03:43 PM
Find all posts by this user    like0    dislike0 Quote this message in a reply
Amelie Davis Offline
Junior Member
**

Posts: 4
Joined: Oct 2021
Reputation: 0
Post: #3
RE: Are legacy phones a security risk?
(08-19-2021 11:26 PM)Tinov Wrote:  I'm a home user. I have a SIP-T18P, I'm not sure how old it is probably 10 years or more.

Is it safe to use on my home network? I don't care about encryption of calls or the like. I'm just worried that it might provide an entry point for a hacker.

Is there any up-to-date firmware available?

My network is thus:
The phone is attached to an unmanaged switch which also has a home PC (cable connection) a work-provided thin client (cable connection), and a wireless access point attached (mobile phones access the network via this). The switch is connected by cable to a home router which is a DHCP server. The phone is set to get IP address by DHCP. The network addresses in use are unrouteable (192.168.x.x). Service provider is Sipgate.

Any opinions or comment most welcome.

Most legacy phone systems can only support a specific number of phones; expanding beyond that limit requires purchasing additional hardware. Aging phones can also compromise security. Once vendors stop providing patches, updates and bug fixes, you'll face elevated cybersecurity risks and potential compliance issues
01-22-2022 07:41 PM
Find all posts by this user    like0    dislike0 Quote this message in a reply
Post Reply 


Possibly Related Threads...
Thread: Author Replies: Views: Last Post
  Yealink MP Phones no DHCP or Network Access with static wesleybauman 1 1,309 05-16-2024 03:26 AM
Last Post: complex1
  Phones no longer support Let Encrypt johnbeaumont 20 37,957 01-19-2024 08:09 AM
Last Post: tom-nbb
  Firmware phones T33G esoriano 1 2,223 12-13-2023 02:50 AM
Last Post: complex1
  MP54 Teams phones sometimes fail to log in jzcase 0 1,767 11-21-2023 12:26 AM
Last Post: jzcase
  Phones without a "server/PBX" kermitxyz 0 1,454 11-13-2023 02:26 AM
Last Post: kermitxyz
  Do Yealink IP Phones Support ZRTP? nolto 0 1,956 01-15-2023 11:35 PM
Last Post: nolto
  integrate Salesforce CRM to Yealink phones mehdi.ett 3 13,470 12-21-2022 02:20 PM
Last Post: Arun Kiran
  MP50 Phones not dialling az@a2z-computing.com 7 11,880 09-23-2022 09:35 PM
Last Post: Oksania
  Reconfigure a hundred phones? poznaniak 2 5,742 01-26-2022 06:41 PM
Last Post: poznaniak
  Yealink Phones and CVE-2021-44228 DaveNL 0 4,084 12-15-2021 02:41 PM
Last Post: DaveNL

Forum Jump:


User(s) browsing this thread: 1 Guest(s)

Contact Us   Yealink   Return to Top   Return to Content   Lite (Archive) Mode   RSS Syndication