On Wed, 2009-11-25 at 19:31 -0500, M. Ranganathan wrote: > Hi, > > As we move towards implementing signaling over TLS on several > services, I would like to have the ability to to turn it OFF globally > for testing purposes ( i.e. for the record and replay tool I am > thinking about and even for viewing traces using wireshark). Do we > envision having a global switch that turns it off in the SIP stack ( > for example, we could put such a flag in domain-config). If not, I > would like to request one in the system configuration.
The current code uses whether or not a TLS port is configured as that switch. That having been said - it won't always work. If, for example, an address says 'sips:f...@bar', then if TLS is not configured then the request MUST fail. It is possible to put your private key into wireshark - if you do, it will be able to decode all the sessions to which you are a party. _______________________________________________ sipx-dev mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-dev Unsubscribe: http://list.sipfoundry.org/mailman/listinfo/sipx-dev sipXecs IP PBX -- http://www.sipfoundry.org/
