[SR-Users] ACC module and BYE attacks
Gholamreza Sabery
gr.sabery at gmail.com
Tue Nov 1 07:58:22 CET 2016
Is there an option in the ACC module for this, or I should handle dialog
tracking using dialog module?
On Tue, Nov 1, 2016 at 10:24 AM, Alex Balashov <abalashov at evaristesys.com>
wrote:
> On 11/01/2016 02:43 AM, Gholamreza Sabery wrote:
>
> If you enable acc module to log CDR data into a database a user can send
>> an infinite number of BYE requests to the server and all of them will be
>> logged into the database as "481 Call/transaction does not exist"! How
>> can we prevent this?
>>
>
> Don't do accounting for BYEs if they don't correspond to a tracked dialog,
> or add a composote unique constraint on Call-ID + some other column in your
> database to prevent the insertion of additional events.
>
> --
> Alex Balashov | Principal | Evariste Systems LLC
>
> Tel: +1-706-510-6800 (direct) / +1-800-250-5920 (toll-free)
> Web: http://www.evaristesys.com/, http://www.csrpswitch.com/
>
> _______________________________________________
> SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list
> sr-users at lists.sip-router.org
> http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.sip-router.org/pipermail/sr-users/attachments/20161101/77c2a62c/attachment.html>
More information about the sr-users
mailing list