On 01/24/2012 09:03 AM, Gilles wrote:
On Tue, 24 Jan 2012 09:55:12 -0500, Jim DeVito
<[email protected]> wrote:
What they are talking about is SIP URI dialling. Let say you have
extension 1000 the rings a phone on your system. With allowguest=yes I
would be allowed to dial SIP:/[email protected] and assuming the
context defined in your [General] section had access to exten 1000 I
would connect to that phone. With alloweguest=no my call would be rejected.
Thanks for the clarification.
Provided I do want strangers to call extensions through an SIP URI
instead of using the PSTN, how can I raise security by requiring that
they authenticate?
By definition this is impossible. If the caller is a 'stranger', that
means you have no knowledge of them prior to their INVITE request
arriving at your server. If you have no knowledge of them, then you
don't have any 'shared secret', and thus they cannot authenticate to
your server.
--
Kevin P. Fleming
Digium, Inc. | Director of Software Technologies
Jabber: [email protected] | SIP: [email protected] | Skype: kpfleming
445 Jan Davis Drive NW - Huntsville, AL 35806 - USA
Check us out at www.digium.com & www.asterisk.org
--
_____________________________________________________________________
-- Bandwidth and Colocation Provided by http://www.api-digital.com --
New to Asterisk? Join us for a live introductory webinar every Thurs:
http://www.asterisk.org/hello
asterisk-users mailing list
To UNSUBSCRIBE or update options visit:
http://lists.digium.com/mailman/listinfo/asterisk-users
