11 Jul
2006
11 Jul
'06
6:41 a.m.
Hi,
What if my proxy does not handle authenticating INVITE messages ?
In that case I think the best way is to lookup location table for the source URI.
If the source URI location matches the location in that table then we must permit INVITE
message.
How can I configure this ?
Thanks,
ilker
-----Original Message-----
From: serusers-bounces(a)lists.iptel.org [mailto:serusers-bounces@lists.iptel.org] On Behalf
Of Victor Stanescu
Sent: Monday, July 10, 2006 1:49 PM
Cc: serusers(a)iptel.org
Subject: Re: [Serusers] prevent INVITE without REGISTERing
Please read "domain" instead of "gtstelecom.ro":
www_authorize("domain",
"subscriber") and proxy_authorize("domain", "subscriber"),
otherwise the code fragment will not be correct. I forgot to replace with a generic name.
Victor Stanescu wrote:
I think it is easier to force him to authenticate the
INVITE. If he is
able to authenticate the INVITE, why do you care if he is registered
or not?
if (method=="REGISTER") {
if(!src_ip=="other") {
if (!www_authorize("gtstelecom.ro", "subscriber")) {
www_challenge("domain", "0");
break;
};
save("location");
log("Replicating REGISTER\n");
t_replicate("other", "5060");
} else {
save("location");
};
break;
} else {
# this is an INVITE
if (!proxy_authorize("gtstelecom.ro", "subscriber")) {
proxy_challenge("domain", "1");
break;
};
# route the call
...
};
İlker Aktuna (Koç.net) wrote:
_______________________________________________
Serusers mailing list
Serusers(a)lists.iptel.org
http://lists.iptel.org/mailman/listinfo/serusers
<http://387555.sigclick.mailinfo.com/sigclick/07090207/00044900/0608064E/0714152515.jpg>
_____________________________________________________________________________________________________________________________________________
Bu e-posta mesaji kisiye ozel olup, gizli bilgiler iceriyor olabilir. Eger bu e-posta
mesaji size yanlislikla ulasmissa, icerigini hic bir sekilde kullanmayiniz ve ekli
dosyalari acmayiniz. Bu durumda lutfen e-posta mesajini kullaniciya hemen geri gonderiniz
ve tum kopyalarini mesaj kutunuzdan siliniz. Bu e-posta mesaji, hic bir sekilde, herhangi
bir amac icin cogaltilamaz, yayinlanamaz ve para karsiligi satilamaz. Bu e-posta mesaji
viruslere karsi anti-virus sistemleri tarafindan taranmistir. Ancak yollayici, bu e-posta
mesajinin - virus koruma sistemleri ile kontrol ediliyor olsa bile - virus icermedigini
garanti etmez ve meydana gelebilecek zararlardan dogacak hicbir sorumlulugu kabul etmez.
This message is intended solely for the use of the individual or entity to whom it is
addressed , and may contain confidential information. If you are not the intended
recipient of this message or you receive this mail in error, you should refrain from
making any use of the contents and from opening any attachment. In that case, please
notify the sender immediately and return the message to the sender, then, delete and
destroy all copies. This e-mail message, can not be copied, published or sold for any
reason. This e-mail message has been swept by anti-virus systems for the presence of
computer viruses. In doing so, however, sender cannot warrant that virus or other forms
of data corruption may not be present and do not take any responsibility in any
occurrence.
_____________________________________________________________________________________________________________________________________________
Hi all,
Is it possible to prevent any user calling without registering ? What
is the best way to do this ?
I guess I'll have to check if the source URI exists in location table.
What is the easiest way to do this ?
If there is a more robust way to do it, please suggest...
Thanks,
ilker
<http://387555.sigclick.mailinfo.com/sigclick/000F0500/07044803/01000
749/0023725214.jpg>
_____________________________________________________________________
_____________________________________________________________________
___
Bu e-posta mesaji kisiye ozel olup, gizli bilgiler iceriyor olabilir.
Eger bu e-posta mesaji size yanlislikla ulasmissa, icerigini hic bir
sekilde kullanmayiniz ve ekli dosyalari acmayiniz. Bu durumda lutfen
e-posta mesajini kullaniciya hemen geri gonderiniz ve tum
kopyalarini mesaj kutunuzdan siliniz. Bu e-posta mesaji, hic bir
sekilde, herhangi bir amac icin cogaltilamaz, yayinlanamaz ve para
karsiligi satilamaz. Bu e-posta mesaji viruslere karsi anti-virus
sistemleri tarafindan taranmistir. Ancak yollayici, bu e-posta
mesajinin - virus koruma sistemleri ile kontrol ediliyor olsa bile -
virus icermedigini garanti etmez ve meydana gelebilecek zararlardan
dogacak hicbir sorumlulugu kabul etmez.
This message is intended solely for the use of the individual or
entity to whom it is addressed , and may contain confidential
information. If you are not the intended recipient of this message or
you receive this mail in error, you should refrain from making any
use of the contents and from opening any attachment. In that case,
please notify the sender immediately and return the message to the
sender, then, delete and destroy all copies. This e-mail message, can
not be copied, published or sold for any reason. This e-mail message
has been swept by anti-virus systems for the presence of computer
viruses. In doing so, however, sender cannot warrant that virus or
other forms of data corruption may not be present and do not take any
responsibility in any occurrence.
_____________________________________________________________________
_____________________________________________________________________
___
---------------------------------------------------------------------
---
_______________________________________________
Serusers mailing list
Serusers(a)lists.iptel.org
http://lists.iptel.org/mailman/listinfo/serusers
_______________________________________________
Serusers mailing list
Serusers(a)lists.iptel.org
http://lists.iptel.org/mailman/listinfo/serusers
6797
days inactive
6797
days old
0 comments
1 participants
participants (1)
-
İlker Aktuna (Koç.net)