[Devel] "SIP identity" module
Daniel-Constantin Mierla
daniel at voice-system.ro
Fri May 11 12:35:53 CEST 2007
Hello,
On 05/11/07 13:27, Henning Westerholt wrote:
> On Freitag, 11. Mai 2007, Juha Heinanen wrote:
>
>> Bogdan-Andrei Iancu writes:
>> > it has nothing to do with restrictions. It is more simpler: it is an
>> > external piece of code that nobody maintains so far.
>>
>> perhaps the limitation i vaguely remember had to do with digest
>> calculation. if the digest is calculated based on received body before
>> nathelper actions on the body, then i don't see how this module can be
>> used in read world.
>>
>
> Hello,
>
> it seems you can't use this module if you want to use this module in scenarios
> where rewriting of the message body (or other parts which will be signed) is
> needed.
> This was the outcome of the thread on devel on 22. March.
>
> Blocks this the inclusion of the module in the trunk?
>
no, that is the purpose for such authentication type, to avoid
man-in-the-middle attacks. The applicability depends on deployment case,
some does not need to deal with NAT (e.g., carriers).
Cheers,
Daniel
> Cheers,
>
> Henning
>
> _______________________________________________
> Devel mailing list
> Devel at openser.org
> http://openser.org/cgi-bin/mailman/listinfo/devel
>
>
More information about the Devel
mailing list