Hi all,
I'm using ser-0.9.7 with mysql authentication.
This is the INVITE handling section of my ser.cfg
# -----------------------------------------------------------------
# INVITE Message Handler
# -----------------------------------------------------------------
if (nat_uac_test("19")) {
setflag(6);
}
if (!allow_trusted()) {
if (!proxy_authorize("sip.keeptelecom.com","subscriber")) {
proxy_challenge("sip.keeptelecom.com","0");
break;
} else if (!check_from()) {
sl_send_reply("403", "Use From=ID");
break;
};
consume_credentials();
};
# ------ Logging calls after succesfully auth -----------
if (isflagset(6)) {
xlog("L_INFO", "<%is> CH <%ct> R-URI <%ru> autenticato: NAT detected\n");
} else {
xlog("L_INFO", "<%is> CH <%ct> R-URI <%ru> autenticato: no NAT detected\n");
}
As you cas see, I've added just after authentication section some lines to log every succesfully authenticated attemp to make a call, with NAT detection info.
I'd like, in the same way, add a single line to log every wrong user or wrong password attempt.
My question is: which is the correct place to set this in the configuration file ?
My first idea was to place xlog instruction just inside the if(!proxy_authorize){ . , but this produces multiple line in log, because in a call first invite is sent without proxy_authorization section.
Is there a way, with xlog, to show the client sent password in clear for an easy troubleshoot ?
Many thanks for any suggestion.
Fabio