[Kamailio-Devel] [ openser-Feature Requests-2726791 ] check r-r header of reply

Juha Heinanen jh at tutpro.com
Thu Apr 2 16:57:32 CEST 2009

Alex Hermann writes:

 > That doesn't help very much. This will only detect a malicious UAS, but it 
 > doesn't do anything to prevent it from bypassing the proxy. If the UAC (or 
 > UAS) is malicious, it can skip whatever RR-headers it wants.

what i would like to achieve is better protection for uac (my user) who
sent request through my proxy.  it is very bad, if reply from my proxy
to the uac does not contain the r-r uri that the proxy itself added.

-- juha

More information about the Devel mailing list