This is great! I just have one question: you keep talking about address spoofing and it seems like a real issue for SIP. Is there some sort of certificate/secure tunnel mechanism in the works?
wbrown
· 1 year ago
There are some mechanisms in place for protecting SIP. One of which is to allow the SIP clients to only talk to a SIP proxy. But then the onus of the protection moves towards the SIP proxy -- and they are typically configured as proxies rather than firewalls. And it doesn't really solve the issue of poor SIP protocol implementations.
Eric Monti
· 1 year ago
SIP does support authentication using challenge-response, and this is somewhat effective against some UDP spoofing attacks (assuming it's properly implemented).
It's also technically possible to use TLS with SIP, but I am not aware of a standard implementation which is supported amongst different vendors.
root@matasano.com
· 10 months ago
OMG Matasano is BAQ!
Try not to screw it up this time Tom let the rest of your team stick to core tech topics and leave the drama at home
StatlerAndWaldorf
· 10 months ago
I'd like to take this opportunity while the blog is online to let the security community at large know that my fridge magnets were received. Bit slow to ship, and the whereabouts of the Clamato are still unknown.
Product as described, seller provided tracking number. Good eBayer, would buy again.
All Comments
It's also technically possible to use TLS with SIP, but I am not aware of a standard implementation which is supported amongst different vendors.
Try not to screw it up this time Tom let the rest of your team stick to core tech topics and leave the drama at home
Product as described, seller provided tracking number. Good eBayer, would buy again.
BURSA SOHBET
ISTANBUL CHAT
ISLAMI CHAT
IZMIR CHAT
ANKARA ARKADAS
ALMANYA CHAT
TURKEY CHAT
MYNET
SITENE EKLE
VIDEO KLIP IZLE
YEMEK TARIFLERI