I think someone may have hacked my * server and made some unauthorized calls. What logs can I look at to find out what may have happened.
Looks like it may have been a false alarm. Someone in a chat room pointed me to /var/log/asterisk/cdr-csv/Master.csv. The calls do not show up there so I think I now what happend now.
It was a false alarm. The VOIP provider logs litsed my calls with some zeros in front of them instead of the actual first two digits of the area code. Further, the destination column showed some pretty strange places like Liechtenstein, Rwanda and the Russian Republic. This really threw me off base. A little further checking revealed these were calls I made. I can’t say why these strange destination cities came up in the logs but this is what threw me into a tizzy thinking someone must have hacked in.