Hello All,
We are using TLS in a high security phone application. Sofia is listening for
connections on an unencrypted ephemeral TCP port (usually 1024 or 2048).
This poses a security risk and we're looking for the correct way to prevent
listening on TCP ports when TLS is enabled.
Does anyone know how to do this?
Thanks,
Jerry
From: Jerry Richards
Sent: Monday, February 20, 2012 11:04 AM
To: 'sofia-sip-devel@lists.sourceforge.net'
Subject: RE: Port 1024 Open?
Okay, I found that TPTAG_SERVER is enabled by default. This was causing port
1024 to be opened when when using TLS. Why is this enabled by default? I'm
using sofia-sip for a phone application so this definitely needs to be disabled.
Thanks,
Jerry
From: Jerry Richards
Sent: Tuesday, February 14, 2012 8:08 AM
To: 'sofia-sip-devel@lists.sourceforge.net'
Subject: Port 1024 Open?
Is it possible that sofia-sip is opening port 1024? We did a port scan on our
phone and port 1024 is open, but I can't find what is opening it. It's either
sofia-sip or something else?
Thanks,
Jerry
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Sofia-sip-devel mailing list
Sofia-sip-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/sofia-sip-devel
