Hi,
Is there somebody who knows what is the effect on the overall security of
SIP sessions if we send the "nextnonce" in the Auth-Info of 200OK of
Register or INVITE.
I'm a little bit afraid to implement because I may open a security hole
towards hackers since the hacker has e.g 60 min time to calculate a
response. I'm not a security expert unfortunately:-(
Thanx for the answers.
br
Andrew
_________________________________________________________________
FREE pop-up blocking with the new MSN Toolbar - get it now!
http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/
_______________________________________________
Sip-implementors mailing list
[email protected]
http://lists.cs.columbia.edu/mailman/listinfo/sip-implementors
