[OpenSIPS-Users] OpenSIPS Summit 2023 in USA

2022-11-03 Thread Bogdan-Andrei Iancu 

Dear OpenSIPS'ers,

For 2023 we decided to disrupt the European hegemony on hosting the 
OpenSIPS Summit and to go for US, to pay our respects to our large local 
community. The time of year is set for May (yes, we want to go back to 
our pre-pandemic schedule), so we we would like to consider the southern 
cities, so we can enjoy a good weather. As we are expecting to have 
people from across the world (not USA only), we are considering cities 
with a good international flight connectivity.


So please help picking the right option, by checking this poll - after 
all, the OpenSIPS Summit is an event by the community, for the 
community, so your opinion matters to us ;)


https://bit.ly/3SVzVk8

Best regards,

--
Bogdan-Andrei Iancu

OpenSIPS Founder and Developer
  https://www.opensips-solutions.com
OpenSIPS Bootcamp 5-16 Dec 2022, online
  https://www.opensips.org/training/OpenSIPS_eBootcamp_2022/


___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users

Re: [OpenSIPS-Users] nonce password

2022-11-03 Thread Maxim Sobolev 
Richard, as part of the RFC8760 work we've changed nonce algorithm to be
more secure and do not expose as much info to a potential attacker starting
with 3.1. It also prevents qop/algorithm "downgrade" attacks on a stateless
proxy. But as Bogdan pointed out, there are some options to ignore
validation of nonce and just verify digest, which might provide some help
in your situation.

-Maksym


On Wed, Nov 2, 2022, 11:18 AM Richard Revels via Users <
users@lists.opensips.org> wrote:

> If I set a nonce password on a opensips 3.x proxy and the same one on
> opensips 2.x proxy it is expected behaviour that it still wont match if
> call starts on opensips 2, is challenged, then INVITE is sent to opensips 3
> proxy?
>
>
>
> [image: BandwidthMaroon.png]
>
>
>
> Richard Revels  •  System Architect II
>
> 900 Main Campus Drive, Suite 100, Raleigh, NC 27606
>
>
>
> m: 919-578-3421  •  o: 919-727-4614
>
> e: rrev...@bandwidth.com
> ___
> Users mailing list
> Users@lists.opensips.org
> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>
___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users

Re: [OpenSIPS-Users] nonce password

2022-11-03 Thread Bogdan-Andrei Iancu 

Hi Richard,

Theoretically it should work (to have a 2.x do the challenge and the 3.x 
and actual auth). But be sure to have the `disable_nonce_check` 
parameter disabled on the one doing the actual auth, otherwise it will fail.


[1] 
https://opensips.org/html/docs/modules/3.2.x/auth.html#param_disable_nonce_check


Regards,

Bogdan-Andrei Iancu

OpenSIPS Founder and Developer
  https://www.opensips-solutions.com
OpenSIPS Bootcamp 5-16 Dec 2022, online
  https://www.opensips.org/training/OpenSIPS_eBootcamp_2022/

On 11/2/22 8:15 PM, Richard Revels via Users wrote:
If I set a nonce password on a opensips 3.x proxy and the same one on 
opensips 2.x proxy it is expected behaviour that it still wont match 
if call starts on opensips 2, is challenged, then INVITE is sent to 
opensips 3 proxy?



BandwidthMaroon.png



Richard Revels•System Architect II

900 Main Campus Drive, Suite 100, Raleigh, NC 27606

m:919-578-3421 • o: 919-727-4614

e: rrev...@bandwidth.com 


___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users


___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users