30 Jan
2014
30 Jan
'14
10:25 a.m.
On Thursday 30 January 2014 04:10:14 Salvatore Nuzzo wrote:
but I need some help figuring our where they should go. See, I really like how this guy bans users for 15 minutes for failing to auth 3 times in a row. Where and how should I add this to my kam config?
As soon as possible, so at the start of the request_route.
if a Authorization header is present: if(is_present_hf("Authorization"))
the check can be triggert anytime, so to avoid doing other stuff needlessly when the request will be blocked, do it asap.
BTW you should take a look at http://www.kamailio.org/wiki/tutorials/security/kamailio-security and comments on this work in progress.
--
POCOS B.V. - Croy 9c - 5653 LC Eindhoven
Telefoon: 040 293 8661 - Fax: 040 293 8658
http://www.pocos.nl/ - http://www.sipo.nl/
K.v.K. Eindhoven 17097024