Hello,
I have a problem with serweb. When I load my page with
http://192.168.1.223/iptel/admin/index.php always appears
"error in SQL query, line: 30"
On line 30 there is a following SQL-Request:
select phplib_id from subscriber where username='root' and password='' and
perms='admin' and domain='192.168.1.223'
The problem that I saw now is that I don't have "perms" in my table
subscriber?
What is wrong? I'm using ser 0.9.0 and serweb 2004-7-24...
Thanks!
Sebastian
--
+++ Lassen Sie Ihren Gedanken freien Lauf... z.B. per FreeSMS +++
GMX bietet bis zu 100 FreeSMS/Monat: http://www.gmx.net/de/go/mail
Hello
You must re-compile you ser, but this time make sure you edit the Makefile
file in the line "exclude_modules?=" and remove mysql module.
That should work.
Regards,
Ricardo.-
> -----Mensaje original-----
> De: michael p [mailto:mikep3000@hotmail.com]
> Enviado el: Martes, 03 de Mayo de 2005 12:10
> Para: serusers(a)lists.iptel.org
> Asunto: [serusers] mysql.so
>
>
> hi
>
> i don't find the modules mysql.so that has to be in
> /usr/lib/ser/modules
>
> i don't know it's not there
>
> i can't modify the file /etc/ser/ser.cfg cause this module
> doesn't exist
>
> anyone knows why?
>
> where can i find it?
>
> thanks
>
> M.
>
>
> _______________________________________________
> Serusers mailing list
> serusers(a)lists.iptel.org
> http://lists.iptel.org/mailman/listinfo/serusers
>
hi
i don't find the modules mysql.so that has to be in /usr/lib/ser/modules
i don't know it's not there
i can't modify the file /etc/ser/ser.cfg cause this module doesn't exist
anyone knows why?
where can i find it?
thanks
M.
Where do I have to put the username, password (secret) while registering to
a pstn with ser? Maybe that I can put it to my uri, but in this case I loose
the telefone-number of the destination.
Sorry, but I don't understand how to do this... maybe that I have to sleep a
little bit more ;-)
> You can register asterisk with SER and your
> pstn-gateway with SER
>
> SER will forward call to pstn
> --- "Sebastian Kühner" <SebastianKuehner(a)gmx.de> a
> écrit:
> > Hello,
> >
> > The problem of this example is, that the user has to
> > register to ser before
> > connecting to the pstn-gateway. But I have the
> > problem that ser has to
> > register to the pstn-gateway before passing the call
> > (with the username,
> > fromuser,... like above). The pstn.cfg only forwards
> > to the pstn-gateway
> > without registration...
> >
> > > hello,
> > >
> > > Look at pstn.cfg from ser sources
> > >
> > > Harry
> > > --- "Sebastian Kühner" <SebastianKuehner(a)gmx.de> a
> > > écrit:
> > > > Hello,
> > > >
> > > > I am using asterisk to connect to a
> > PSTN-Gateway. I
> > > > have to register to this
> > > > pstn gateway before passing calls with:
> > > >
> > > > [broadvoice]
> > > > type=friend
> > > > username=xxxxxxxxxxx
> > > > fromuser=xxxxxxxxxx
> > > > secret=xxxxxxxxxx
> > > > host=sip.broadvoice.com
> > > > port=5060
> > > > context=ext_default
> > > > dtmfmode=inband
> > > > fromdomain=sip.broadvoice.com
> > > > canreinvite=no
> > > > dtmfmode=inband
> > > > insecure=very
> > > > permit=xxx.xxx.xxx.xxx/32
> > > > qualify=yes
> > > >
> > > >
> > > > Now I want to put through the calls with ser.
> > Has
> > > > anyone an idea how to do
> > > > that in ser?
> > > >
> > > > Thanks!
> > > >
> > > > Sebastian
> > > >
> > > > --
> > > > +++ Neu: Echte DSL-Flatrates von GMX - Surfen
> > ohne
> > > > Limits +++
> > > > Always online ab 4,99 Euro/Monat:
> > > > http://www.gmx.net/de/go/dsl
> > > >
> > > > _______________________________________________
> > > > Serusers mailing list
> > > > serusers(a)lists.iptel.org
> > > > http://lists.iptel.org/mailman/listinfo/serusers
> > > >
> > >
> > >
> > >
> > >
> > >
> > >
> > >
> >
> __________________________________________________________________
> >
> > > Découvrez le nouveau Yahoo! Mail : 250 Mo d'espace
> > de stockage pour vos
> > > mails !
> > > Créez votre Yahoo! Mail sur
> > http://fr.mail.yahoo.com/
> > >
> >
> > --
> > +++ Lassen Sie Ihren Gedanken freien Lauf... z.B.
> > per FreeSMS +++
> > GMX bietet bis zu 100 FreeSMS/Monat:
> > http://www.gmx.net/de/go/mail
> >
>
>
>
>
>
>
> __________________________________________________________________
> Découvrez le nouveau Yahoo! Mail : 250 Mo d'espace de stockage pour vos
> mails !
> Créez votre Yahoo! Mail sur http://fr.mail.yahoo.com/
>
--
+++ Lassen Sie Ihren Gedanken freien Lauf... z.B. per FreeSMS +++
GMX bietet bis zu 100 FreeSMS/Monat: http://www.gmx.net/de/go/mail
Cesc Santasusana writes:
> Fair enough, but then what do you do against fake BYE messages? If
> you do not authenticate them somehow, anybody could sniff the INV
> message (and OK/ACK), take the needed fields, and tear down the
> session.
there is very little you can do to prevent that unless you use tls for
signaling.
-- juha
hello,
i'm testing sipsak.
./sipsak -M -B "test " -s sip:dummy@X.X.X.2:5060
this command work well.
Then i want to use the -f file option:
./sipsak -f test.txt -s sip:dummy@X.X.X.2:5060
with the file test.txt:
MESSAGE sip:dummy@X.X.X.2:5060 SIP/2.0
From: <sip:sipsak@X.X.X.1>
To: <sip:dummy@X.X.X.2:5060>
Call-ID: <1234567(a)X.X.X.1>
CSeq: 2 MESSAGE
Content-Type: text/plain
Content-Length: 5
User-Agent: sipsak 0.8.12
Line-based text data: text/plain
test
The command wait for 20s and finish with:
** give up retransmissioning....
and i don't capture any SIP messages with ethereal.
A idea?
thanks
Fair enough, but then what do you do against fake BYE messages? If you do not authenticate them somehow, anybody could sniff the INV message (and OK/ACK), take the needed fields, and tear down the session.
Of course, even if you protect against fake BYEs, there is still CANCEL messages, which according to the RFC cannot be challenged at all ... so maybe just drop them all?
I am just thinking outloud on how to harden a sip system ...
Cesc
>>> Juha Heinanen <jh(a)tutpro.com> 05/03/05 04:07PM >>>
Cesc Santasusana writes:
> For example, Kphone can resend an INV if challenged which contains
> the auth-data. On the other hand, if a kphone is the receiver of the
> INV, and it hangs up, kphone generates a BYE message which does NOT
> contain auth-data. Thus, ser will challlenge the kphone back, kphone
> will reply with a CANCEL and resend the BYE without (again) the
> auth-data, entering an endless loop. Ain't it funny?
bye is not initial request, but in-dialog request. it doesn't make
sense to authenticate them, because you may not even know if the sender
of bye is your local user or not.
for initial requests you always know this and thus can authenticate
them.
-- juha
Unclassified
I actually gave up trying to this kind of checks on routed messages. Why?
Not all phones behave the same way and some had problems when authentication (digest) was required for messages different than INVITE.
For example, Kphone can resend an INV if challenged which contains the auth-data. On the other hand, if a kphone is the receiver of the INV, and it hangs up, kphone generates a BYE message which does NOT contain auth-data. Thus, ser will challlenge the kphone back, kphone will reply with a CANCEL and resend the BYE without (again) the auth-data, entering an endless loop. Ain't it funny?
By the way ... i notified this to kphone developers ... no news :(
I repeat, i tried other phones and it worked fine: minisip, polycom hardphone (has many other bugs ...), snom, ...
But i agree with Juha (and this makes it twice this afternoon) ... you should authenticate them as you would with any other message. Try using a phone which supports TLS and then you are good to go :)
Regards,
Cesc
>>> Juha Heinanen <jh(a)tutpro.com> 05/03/05 11:58AM >>>
>Klaus Darilion writes:
>
> > What would be a normal (out-of-dialog) check?
>
>the same checks you do for initial requests that don't have Route
>header, i.e., check if domain of request uri is local, authenticate
>caller if local, etc.
>
>-- juha
>
_______________________________________________
Serusers mailing list
serusers(a)lists.iptel.org
http://lists.iptel.org/mailman/listinfo/serusers
Unclassified
Cesc Santasusana writes:
> For example, Kphone can resend an INV if challenged which contains
> the auth-data. On the other hand, if a kphone is the receiver of the
> INV, and it hangs up, kphone generates a BYE message which does NOT
> contain auth-data. Thus, ser will challlenge the kphone back, kphone
> will reply with a CANCEL and resend the BYE without (again) the
> auth-data, entering an endless loop. Ain't it funny?
bye is not initial request, but in-dialog request. it doesn't make
sense to authenticate them, because you may not even know if the sender
of bye is your local user or not.
for initial requests you always know this and thus can authenticate
them.
-- juha
Hello,
I am using asterisk to connect to a PSTN-Gateway. I have to register to this
pstn gateway before passing calls with:
[broadvoice]
type=friend
username=xxxxxxxxxxx
fromuser=xxxxxxxxxx
secret=xxxxxxxxxx
host=sip.broadvoice.com
port=5060
context=ext_default
dtmfmode=inband
fromdomain=sip.broadvoice.com
canreinvite=no
dtmfmode=inband
insecure=very
permit=xxx.xxx.xxx.xxx/32
qualify=yes
Now I want to put through the calls with ser. Has anyone an idea how to do
that in ser?
Thanks!
Sebastian
--
+++ Neu: Echte DSL-Flatrates von GMX - Surfen ohne Limits +++
Always online ab 4,99 Euro/Monat: http://www.gmx.net/de/go/dsl
