There really isn't much here would stop a determined intruder. The vlan info might be able to be found on the phone itself, no sniffing required. Access-lists for voice traffic still leave a wide number of ports open as the protocols have dynamic destinations. These ACL?s should be in place, but it ...

[ more ]