21 Dec
2008
21 Dec
'08
10:02 a.m.
On 12/20/08 17:19, Juha Heinanen wrote:
Daniel-Constantin Mierla writes:
:-)
I believe in this cases an important aspect is to
be sure you can
identify the attacker. It is hard to prevent all people can think of,
but when detecting one case, being able to get the guilty is very
important. Also, at that time, you can add the logic to prevent further
exposure to same attack.
this sounds like the ever lasting story of fixing security holes in
internet explorer. i don't think it is a vice path to take.
better to proxy all media if accounting cannot be done in the
gateways. and then we have reinvented pstn ...
you are right with media based session and calls to gateways, but
sometime could be the case of accounting other types of sessions/sip
messages. When the value is transmitted via signaling, that has to be
stored somehow, b2bua is ultimate solution and the safest.
Cheers,
Daniel
--
Daniel-Constantin Mierla
http://www.asipto.com