[Users] TLS / SRTP implementation
klaus.mailinglists at pernau.at
Tue Nov 8 20:08:57 CET 2005
SRTP is a client feature. It is indpendent of the SIP proxy. But be
aware how the key for media encryption is transported. If it is
available in the SDP in plaintext (like SNOM phones) you should use TLS
otherwise the everbody can decrypt it who sniffed the INVITE.
Christophe Irles wrote:
> I'm a newbie in OpenSER usage and in SIP in general so perhaps it's very
> simple questions.
> I understand that TLS can be activated/disactivated from the configuration
> file but can not be used only according SIP number for example or call
> streams(internet), that's right ?
> What about SRTP ? In order to have SRTP working, I think I "just" need
> device phone/softphone with this feature. It's not dependant of the OpenSER
> configuration, is it ? Is it possible to force the use of SRTP when it's
> possible ? For this, perhaps, I need to configure "mediaproxy" or "rtpproxy"
> module or something else ( mediaproxy daemon for example) ?
> Users mailing list
> Users at openser.org
More information about the Users