Re: RE : [Users] Connection 2 Openser with DNS record

Wed, 18 Apr 2007 02:01:26 -0700 

Hi Tsitsi,
you should authenticate only users that pretend to belong to the local domain. So on .org server do not try to auth calls originated by a .com . 

regards,
bogdan

Tsitsi wrote:

Hi,

I try to bypass this code :

 if(!proxy_authorize("domain.org", "subscriber"))
     {

    
        xlog("L_INFO", "Proxy authentication failed -  M=$rm RURI=$ru 
F=$fu T=$tu IP=$si ID=$ci\n");

        proxy_challenge("domain.org", "0");
        exit;

   
     }
   
   
    if(!check_from())

    {

       
        xlog("L_INFO", "Spoofed From-URI detected - M=$rm RURI=$ru 
F=$fu T=$tu IP=$si ID=$ci\n");

        sl_send_reply("403", "Spoofed From-URI Detected");
        exit;
    }


 
and the dial is ok, but I worry that I can be a less security. What 
about proxy_authorize() and check_from() for calling a foreign 
domain?     


Regards,
Tsitsi
*/
Tsitsi <[EMAIL PROTECTED]>/* a écrit :

    I have 2 OpenSER servers that I want to "connect" with each other:

    Phone "a" <---> Server "A"(domain.com) <------------> Server
    "B"(domain.org) <---> Phone "b"

    I use X-Lite in phone 'a' and phone 'b', I can send IM but fail to
    Dial

    It say

    Proxy authentication required.

    What can  I do ?

    Regards,
    Tsitsi

    ------------------------------------------------------------------------
    Découvrez une nouvelle façon d'obtenir des réponses à toutes vos
    questions ! Profitez des connaissances, des opinions et des
    expériences des internautes sur Yahoo! Questions/Réponses
    
<http://fr.rd.yahoo.com/evt=42054/*http://fr.answers.yahoo.com>._______________________________________________
    Users mailing list
    [email protected]
    http://openser.org/cgi-bin/mailman/listinfo/users


------------------------------------------------------------------------

Découvrez une nouvelle façon d'obtenir des réponses à toutes vos 
questions ! Profitez des connaissances, des opinions et des 
expériences des internautes sur Yahoo! Questions/Réponses 
<http://fr.rd.yahoo.com/evt=42054/*http://fr.answers.yahoo.com>.

------------------------------------------------------------------------

_______________________________________________
Users mailing list
[email protected]
http://openser.org/cgi-bin/mailman/listinfo/users

  



_______________________________________________
Users mailing list
[email protected]
http://openser.org/cgi-bin/mailman/listinfo/users






















					Reply via email to