[Kamailio-Users] kamailio 1.4 INVITE authentication bypass
Asim Riaz
ariaz78 at gmail.com
Mon Sep 7 14:58:54 CEST 2009
Hi Alex,
here are the details, please let me know if you need more information;'
modparam("permissions", "db_mode", 1)
modparam("permissions", "trusted_table", "trusted")
modparam("permissions", "db_url", "mysql://openser:openserrw@localhost
/openser")
kamctl trusted show
+----+----------------+-------+--------------+------+---------+
| id | src_ip | proto | from_pattern | tag | version |
+----+----------------+-------+--------------+------+---------+
| 3 | 192.168.1.1 | any | ^sip:.*$ | NULL | NULL |
| 4 | 192.168.2.2 | any | ^sip:.*$ | NULL | NULL |
| 6 | 192.168.3.3 | any | ^sip:.*$ | NULL | NULL |
| 7 | 192.168.4.4 | any | ^sip:.*$ | | NULL |
| 8 | 192.168.5.5 | any | ^sip:.*$ | | NULL |
| 9 | 192.168.6.6 | any | ^sip:.*$ | | NULL |
+----+----------------+-------+--------------+------+---------+
IP address of the caller which was able to bypass INVITE AUTH is e.g
10.10.1.1,
completly diffrent in all octects from the ip addresses in my trusted table.
Thanks,
Asim
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.kamailio.org/pipermail/users/attachments/20090907/5f98a326/attachment-0001.htm>
More information about the Users
mailing list