On Fri, 2008-09-05 at 09:04 -0400, M. Ranganathan wrote: > Why does sipx proxy challenge REFER requests from services that are > known to be co-hosted with it? It could be made more efficient if such > requests were not challenged.
It is never appropriate to use a source IP address or port as an authenticator. If we were to use SIP over TLS between components with peer authentication, we could trust the sender, but to add the overhead of doing that for all requests just to avoid challenging a REFER would not be a good tradeoff. _______________________________________________ sipx-dev mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-dev Unsubscribe: http://list.sipfoundry.org/mailman/listinfo/sipx-dev
