In article <[EMAIL PROTECTED]>, trixter@ 0xdecafbad.com says... > to add to this, given the state of MD5 and its 'security' or lack > thereof, its a bit over simplistic to just say md5 without adding that > its actually 3 md5 hashes... Precomputing is harder (but not > impossible) because of the way its done. The nonce makes it a little > harder - although the nonce is known even by an attacker ...
To make long story short, SIP can be cracked (like evrything else). It isn't so simple like sniffing the line because data is encripted. I don't have to put anything extra in my sip.conf (or any other conf file) or in my softphone for basic security (md5 encription), because all is "allready there". Have I got that right? -- Tomislav Parcina [EMAIL PROTECTED] _______________________________________________ --Bandwidth and Colocation provided by Easynews.com -- Asterisk-Users mailing list To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users
