Hello, I have a question maybe someone can help or comment.
How can one protect in the real world against faking the identity of presence subscriptions originating from foreign domains? The scenario is: Once us...@domaina accepts presence subscriptions from us...@domainb and his pre-rules is updated with this information, nobody stops somebody else to impersonate us...@domainb to send subscribe messages from any source and presenting the same From header. How can the server that serves domainA check for the real identity of the foreign subscriber? Can anyone comment what would be a good practical solution? Regards, Adrian _______________________________________________ Users mailing list [email protected] http://lists.opensips.org/cgi-bin/mailman/listinfo/users
