As VoIP grows into a replacement for the PSTN, we will absolutely need to protect it. VoIP is far more vulnerable to interception than the PSTN. A PC on your office network can unknowingly host spyware that can intercept your corporate VoIP calls and store and organize them on a hard disk for convenient browsing by criminals half a world away, giving them trade secrets and insider trading opportunities.
The Internet is not a safe medium to carry our phone calls. This technology has social benefits. It has the power to change our lives, enabling us to have a private conversation any time we want with anyone, anywhere – without buying a plane ticket.
mOS comes with PaX patched kernel.PaX is a patch for the Linux kernel that implements least privilege protections for memory pages. The least-privilege approach allows computer programs to do only what they have to do in order to be able to execute properly, and nothing more. PaX was first released in 2000.
PaX flags data memory as non-executable, program memory as non-writable and randomly arranges the program memory. This effectively prevents many security exploits, such as some kinds of buffer overflows. The former prevents direct code execution absolutely, while the latter makes so-called return-to-libc (ret2libc) attacks difficult to exploit, relying on luck to succeed, but doesn’t prevent overwriting variables and pointers.
PaX is maintained by The PaX Team, whose principal coder is anonymous.
We own all our servers which are held in multiple locations each with multiple backups in other locations – we store these in countries which follow strict data privacy laws, who also don’t work with other organizations out with their own jurisdiction. We will never reveal the locations and have proxies in place to protect this also.