Hello Alexandru, you are right, right now the ha1 value in the database is not used from the uac registration functionality. This could be added similar to the functionality in auth_db, I think. If you need some pointers for an extension of the code, let us know on sr-dev list.
I don't think it will work correctly if you just use the uac registration functionality and then interact with a failure_route on the auth error. About your security concerns, you are right that of course plain text passwords are not good. The MD5 hash that is used in the ha1 will not provide much protection as of today, as you probably know as well. Cheers, Henning Am 28.08.19 um 16:54 schrieb Alexandru Covalschi: Can I fire REGISTER's w/o authentication but then process 401/407 in a failure route and somehow tell UAC module which ha1 to use? Keeping all the timers functionality and uac_reg_lookup feature? Or at least if I process 401/407 in a failure_route and manually create the Auth header, will UAC module still be able to keep track of the registrations? Anyway, an in-memory registration table is preferred as I'm using an API which will push all trunks inside Kamailio... Using a database is the worst scenario in my case. ________________________________ Regards, Alexandru Covalschi VoIP Engineer and System Administrator tel: +37367367850 28 авг. 2019 г., в 16:15, Alexandru Covalschi <568...@gmail.com<mailto:568...@gmail.com>> написал(а): Hello, I'm trying to make Kamailio to SIP register on a remote server. However storing plaintext password looks very unsecure. Is there a possibility to store password for uac module using ha1 hash instead of the plaintext password? I see there's a row for it in the database, but in the source code it's not used and it seems i can't neither use it in db neither set up in-memory as avp. Maybe there's a workaround to directly access the in-memory uac registration htable? ________________________________ Regards, Alexandru Covalschi VoIP Engineer and System Administrator tel: +37367367850 _______________________________________________ Kamailio (SER) - Users Mailing List firstname.lastname@example.org<mailto:email@example.com> https://lists.kamailio.org/cgi-bin/mailman/listinfo/sr-users -- Henning Westerholt - https://skalatan.de/blog/ Kamailio services - https://skalatan.de/services
_______________________________________________ Kamailio (SER) - Users Mailing List firstname.lastname@example.org https://lists.kamailio.org/cgi-bin/mailman/listinfo/sr-users