[OpenSER-Devel] nonce errors in trunk
Bogdan-Andrei Iancu
bogdan at voice-system.ro
Fri Jun 6 17:33:33 CEST 2008
Hi Juha,
The errors you are seeing are a result of the new nonce security check
that was added in trunk. See:
http://lists.openser.org/pipermail/users/2008-June/017719.html
Probably you have in the network some UACs that tries to reuse a nonce
for multiple authentications.
Regards,
Bogdan
Juha Heinanen wrote:
> recently i have started to see these kinds of errors in connection of
> authentication of register requests:
>
> Jun 6 18:04:52 localhost /usr/sbin/openser[28438]: ERROR:auth:is_nonce_index_valid: index out of the permitted interval
> Jun 6 18:04:52 localhost /usr/sbin/openser[28438]: ERROR:auth:check_nonce: nonce index not valid
> Jun 6 18:04:52 localhost /usr/sbin/openser[28438]: INFO: REGISTER <sip:+35832345671 at test.fi> from <192.168.1.2> is unauthorized
>
> i remember there some change related to nonce handling. should i have
> changed my script somehow? the error comes from this:
>
> if (!radius_www_authorize("")) {
> xlog("L_INFO", "INFO: REGISTER <$tu> from <$si> is unauthorized\
> n");
> www_challenge("", "1");
> exit;
> };
>
> -- juha
>
>
>
> _______________________________________________
> Devel mailing list
> Devel at lists.openser.org
> http://lists.openser.org/cgi-bin/mailman/listinfo/devel
>
>
More information about the Devel
mailing list