On 2010-06-03 12:17, Mossman, Paul (Paul) wrote: > Scott wrote: > >> If the resource list server isn't going to do the >> enforcement, then the protection is more apparent than >> real... not sure I'd go there... >> > sipXecs RLS already does enforce, in that the user without the permission > will not have a resource list to subscribe to. > Don't confuse configuring an address with enforcing access. > What we should not do is have sipXproxy examine SUBSCRIBEs addressed directly > to user AORs, and selectively block them based on the event package type. > But it would be reasonable to enforce access to resource lists at the RLS.
_______________________________________________ sipx-dev mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-dev Unsubscribe: http://list.sipfoundry.org/mailman/listinfo/sipx-dev sipXecs IP PBX -- http://www.sipfoundry.org/
