Hi Tsitsi,
you should authenticate only users that pretend to belong to the local domain. So on .org server do not try to auth calls originated by a .com .
regards, bogdan
Tsitsi wrote:
Hi,
I try to bypass this code :
if(!proxy_authorize("domain.org", "subscriber")) {
xlog("L_INFO", "Proxy authentication failed - M=$rm RURI=$ruF=$fu T=$tu IP=$si ID=$ci\n"); proxy_challenge("domain.org", "0"); exit;
} if(!check_from()) { xlog("L_INFO", "Spoofed From-URI detected - M=$rm RURI=$ruF=$fu T=$tu IP=$si ID=$ci\n"); sl_send_reply("403", "Spoofed From-URI Detected"); exit; }
and the dial is ok, but I worry that I can be a less security. What about proxy_authorize() and check_from() for calling a foreign domain?
Regards, Tsitsi */ Tsitsi mediatsitsi-ser@yahoo.fr/* a écrit :
I have 2 OpenSER servers that I want to "connect" with each other: Phone "a" <---> Server "A"(domain.com) <------------> Server "B"(domain.org) <---> Phone "b" I use X-Lite in phone 'a' and phone 'b', I can send IM but fail to Dial It say Proxy authentication required. What can I do ? Regards, Tsitsi ------------------------------------------------------------------------ Découvrez une nouvelle façon d'obtenir des réponses à toutes vos questions ! Profitez des connaissances, des opinions et des expériences des internautes sur Yahoo! Questions/Réponses <http://fr.rd.yahoo.com/evt=42054/*http://fr.answers.yahoo.com>._______________________________________________ Users mailing list Users@openser.org http://openser.org/cgi-bin/mailman/listinfo/users
Découvrez une nouvelle façon d'obtenir des réponses à toutes vos questions ! Profitez des connaissances, des opinions et des expériences des internautes sur Yahoo! Questions/Réponses
http://fr.rd.yahoo.com/evt=42054/*http://fr.answers.yahoo.com.
Users mailing list Users@openser.org http://openser.org/cgi-bin/mailman/listinfo/users