[sr-dev] SIP identity - AUTH_identity
Alfred E. Heggestad
aeh at db.org
Wed Oct 26 17:32:24 CEST 2011
Well Done, Olle :)
/alfred
On 26/10/11 17:22, Olle E. Johansson wrote:
> Hello!
>
> Today at SIPit 29 we successfully tested the kamailio auth_identity module that implements RFC 4474.
>
> We could successfully add SIP identity headers and verify incoming headers from one other implementation.
>
> Now, the module is not built for scalability and redundance. A lot of stuff is cached in RAM, like certificates - which could lead to an DOS attack vector. It doesn't make it simple either when you have multiple servers for one domain. Maybe a memcached backend could help.
>
> We will also try to look for other attack vectors, like sending bad HTTPS URL's.
>
> Regardless, this was the first time I got SIP identity working and the others are struggling with their code to get their end working :-)
>
> Kamailio rocks.
> /O
> _______________________________________________
> sr-dev mailing list
> sr-dev at lists.sip-router.org
> http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-dev
More information about the sr-dev
mailing list