Hi Galen and Chris Many thanks for your quick answers! So we will however deactivate the unneeded SIP2 server on port 8023.
Of course SIP2 is hideously insecure so those ports should never be exposed except on localhost and run through stunnel or a VPN.
If you expose unencrypted SIP2 traffic on a network then you are sending all sorts of personal info unencrypted, most likely violating the GDPR. And definitely opening yourself up to being compromised.
Thanks for clarifying that. We will try to find a way to secure the unencrypted SIP2 traffic (most probably using stunnel). Best wishes: Michael -- Geschäftsführer · Diplombibliothekar BBS, Informatiker eidg. Fachausweis Admin Kuhn GmbH · Pappelstrasse 20 · 4123 Allschwil · Schweiz T 0041 (0)61 261 55 61 · E mik@adminkuhn.ch · W www.adminkuhn.ch