Technical information

ManualsBrandsAT&T ManualsNetwork RouterDEFINITY Remote Port Security Device

231

232

233

234

235

236

237

238

239

240

Voice Messaging Systems

6-46 Issue 7 June 2001

Hackers may also use a computer to dial an access code and then publish the

information for other hackers. Substantial charges can accumulate quickly. It is

your responsibility to take appropriate steps to implement the features properly, to

evaluate and administer the various restriction levels, and to protect and carefully

distribute access codes.

To reduce the risk of unauthorized access through your voice messaging system,

also observe the following procedures:

 Monitor SMDR reports and/or Call Accounting System reports for outgoing

calls that might be originated by internal and external abusers.

 If the MERLIN MAIL, MERLIN MAIL-ML, MERLIN MAIL R3, and/or

MERLIN LEGEND Mail Voice Messaging System outcalling feature will be

used, on the MERLIN LEGEND Communications System, outward restrict

(FRL 0) all voice messaging system ports not used for outcalling. This

denies access to facilities (lines/trunks).

 The two-port systems (MERLIN MAIL Voice Messaging System,

MERLIN MAIL-ML Voice Messaging System, MERLIN MAIL R3

Voice Messaging System, and MERLIN LEGEND Mail Voice

Messaging System) use port 2 for outcalling; outward restrict port 1.

 The four-port systems (MERLIN MAIL Voice Messaging System,

MERLIN MAIL-ML Voice Messaging System, MERLIN MAIL R3

Voice Messaging System, and MERLIN LEGEND Mail Voice

Messaging System) use port 4 for outcalling; outward restrict ports

1, 2, and 3.

 The six-port system (MERLIN MAIL R3 and MERLIN LEGEND Mail

Voice Messaging Systems) uses ports 5 and 6 for outcalling;

outward restrict ports 1, 2, 3, and 4.

 Require employees who have voice mailboxes to use passwords to protect

their mailboxes. For the MERLIN MAIL and MERLIN MAIL-ML Voice

Messaging Systems, passwords should be four digits long. For MERLIN

MAIL R3 and MERLIN LEGEND Mail Voice Messaging Systems,

passwords should be at least six digits long.

 Require the System Administrator and all voice mailbox owners to change

their password from the default.

 Have employees use random sequence passwords.

 Impress upon employees the importance of keeping their passwords a

secret.

 Encourage employees to change their passwords regularly.

 Use a secure password for the General Mailbox.

 Reassign the System Administrator’s mailbox/extension number from the

default of 9997. Be certain to password protect the new mailbox.

 Have the System Administrator delete unneeded voice mailboxes from the

system immediately.