It’s one single yealink t46u in an office of a couple dozen. I went looking through the settings and the “auto redial” setting is off, though that is only supposed to redial when the other end is busy. There’s This seems to happen sporadically when he talks to someone and hangs up. Then it calls out again on its own a few minutes later and in the CDR the call only lasts 3 seconds.
It’s not always a few minutes later, today there was one that was 80 minutes later, but it does look like a redial since it was the same number as the previous outbound call.
Another thought was that it might be the new cordless Yealink headset but today’s example happened on speakerphone when the user was out to lunch. Tried resetting it to factory a few weeks back but that didnt fix it. There arent any other unexplained outbound calls, so I dont think the phone has been compromised. The local log file in the phone (on my test phone here, an older model) doesnt indicate that the redial button was pushed.
I confirmed that it only calls out to numbers that were dialed outbound earlier, not any of the of inbound callers in between the legitimate outbound call and the later illigitimate outbound call, which is why I’m looking at the redial feature.
No luck swapping phones, but in the meantime I found out that this is not actually isolated to one phone, he’s just the only one that’s pointed it out. I dont see anything in the asterisk log and I dont have a good way to run a packet capture on their network for any length of time so I logged into a phone and foudn some odd entries in the Dialed List. Not sure what this means, if anything but there are occasional lines where the phone claims to have dialed a single digit
Looking at the example from today in the local log on the phone I see it’s having problems getting the time from the DHCP server, and there’s this line at the same time it supposedly dialed the number 5