15 Oct
2007
15 Oct
'07
11:37 a.m.
El Monday 15 October 2007 10:13:22 Iñaki Baz Castillo escribió:
El Monday 15 October 2007 09:58:36 Iñaki Baz Castillo
escribió:
Ops, there is no this issue since the "From" is checked against the auth
username in "check_from()".
Then the only I need is to store dialog original URI domain.
--
Iñaki Baz Castillo
ibc(a)in.ilimit.es
How can my OpenSer know which domain this REFER
goes? of course the "To"
header is not valid at all.
Could be a solution a SQL query to "location" table looking for the URI
(sip:userB@80.98.123.23:5060) and getting the username and domain of
this?
Anyway this solution wouldn't be secure since userA(a)domainA.com could hack
its "From" header in the REFER and appears as "(a)domainB.com".com".