In our modern society telephony has developed into an ubiquitous service. People communicate anytime and anywhere via telephony. As such, telephony has moved to the Internet where everyone can easily access it.

Researchers at Rhodes University developed a VoIP telephony system named iLanga. This system is essentially a complete, cost effective, computer-based Private Branch Exchange (PBX) that enables registered users, both on campus and on the open Internet, to communicate. As a VoIP system, iLanga has a rich set of features that includes interactive voice response, call conferencing, music on hold, support for multiple devices for a single user and many more.

As an open source system designed to facilitate service delivery over the Internet, iLanga is subject to a mixture of both legitimate users and attackers. This makes security a very important issue to consider. In this project, we will carefully look into how security can be considered and be prioritised, in order to deploy a reliable communication system.


In the past, iLanga has been compromised and at the beginning of this project it was shut down to avoid further exploitation rendering it unavailable to its users. The problem can be largley attributed to malicious elements on the Internet.

  • The primary goal of this project was to secure iLanga from attacks such as those that have been experienced in the past and to identify other potential threats to it.
  • The secondary goal was to develop a guide with best security practices that will apply to iLanga and similar VoIP systems