Hello,
a way to protect is to have a check on source ip on route AUTH, like:
if(src_ip==myself) return;
This will not challenge the requests that are sent from the server itself.
Cheers, Daniel
On 2/4/13 4:06 PM, Stoyan Mihaylov wrote:
I had same problem long time ago. When I found enough time, I solved it adding in route[AUTH]{ .............. if (from_uri==myself) {
if((is_method("MESSAGE"))){if (is_domain_local("$si")) {return;}}............ } Also, I think sources of m_dump have potential problem - as a matter of fact, I got crashes, after solution, which I solved adding next modification of msilio.c diff --git a/modules/msilo/msilo.c b/modules/msilo/msilo.c index 209b309..4bda8fa 100644 --- a/modules/msilo/msilo.c +++ b/modules/msilo/msilo.c @@ -1125,8 +1125,16 @@ static int m_dump(struct sip_msg* msg, str* owner_s) memcpy(tmp_extra_hdrs.s, extra_hdrs_str.s, extra_hdrs_str.len); memcpy(tmp_extra_hdrs.s+extra_hdrs_str.len, str_vals[4].s, str_vals[4].len); } else {
tmp_extra_hdrs.len = 0;tmp_extra_hdrs.s = "";
tmp_extra_hdrs.len = 0;if ((tmp_extra_hdrs.s = pkg_malloc(1)) == NULL){LM_ERR("Out of pkg memory");if (msilo_dbf.free_result(db_con, db_res) < 0)LM_ERR("failed to free thequery result\n");
msg_list_set_flag(ml, mid, MS_MSG_ERRO);goto error;}tmp_extra_hdrs.s[0]='\x0'; } hdr_str.len = 1024; if(m_build_headers(&hdr_str, str_vals[3] /*ctype*/,On Mon, Feb 4, 2013 at 10:01 AM, Nord7 nordseven@gmail.com wrote:
Hello i have two problems with module MSILO and text messages from SIP client BRIA.
- I can't send messages with m_dump.
I have installed Kamailio 3.3 in default configuration. I'm added "m_dump("$fu")" to my config in route[REGISTRAR]. If i use client CSipSimple for sending messages to offline user "333". i'm receive notification message "*** User 333 offline!". Next i connect to Kamailio with user "333" and i see in kamailio log what "m_dumt" trying to send messages but can't because "request authorisation". How to disable authorisation request, without leak security.
route[REGISTRAR] { if (is_method("REGISTER")) { if(isflagset(FLT_NATS)) { setbflag(FLB_NATB); # uncomment next line to do SIP NAT pinging ## setbflag(FLB_NATSIPPING); } if (!save("location")) sl_reply_error();
if (m_dump("$fu")) { log("MSILO: offline messages dumped - if they were\n"); } else { log("MSILO: no offline messages dumped\n"); } exit; }}
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users@lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list sr-users@lists.sip-router.org http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users