Actually, I’m not getting any email notifications from FreePBX’s JIRA or from the FreePBX forums (even though I double checked my profile lists my email address correctly), so I never knew about your request for more information. EDIT: I received all of my messages between 6pm 13 April 2016 (yesterday) and 4am today! I was busy trying to learn the dial plan syntax so I could figure out what could have been the issue. But we’ve discovered it now.
Thank you for addressing the issue, limiting the T option to inside users.
I (and some employees) listened in on a few of these fraudulent calls and it was clearly a shady calling card service piggy backing on unexpecting Asterisk users (I won’t say FreePBX, since I’m sure every Asterisk based system leaves that “T” in by default for the users that actually DO need it.
I’m only glad this is now posted on many forums so that users can discover what is going on. (I couldn’t find ANYTHING online exposing this issue, and it is not listed on any “Best Practices” for Asterisk or FreePBX).