thr3ads.net - asterisk users - [Asterisk-Users] SIP security [Jan 2006]

If this information is useful, please help other people find it:
Share via:

Tomislav Parcina

2006-Jan-04 01:57 UTC

[Asterisk-Users] SIP security

I have * server that has public IP. Some users with their softphones 
(and other with hardphones) need to connect to that * server and call 
out thrue Zap lines. As far as I know when someone tries to authenticate 
to * server using SIP protocol, he sends data in plain text format. 
Right? How can I protect * server from snifers?

I would like to use SJphone softphone for above purpose.


-- 

Tomislav Parcina
name.surname@email.t-com.hr

Olle E Johansson

2006-Jan-04 02:00 UTC

head link

[Asterisk-Users] SIP security

Tomislav Parcina wrote:> I have * server that has public IP. Some users with their softphones 
> (and other with hardphones) need to connect to that * server and call 
> out thrue Zap lines. As far as I know when someone tries to authenticate 
> to * server using SIP protocol, he sends data in plain text format. 
> Right? How can I protect * server from snifers?
> 
> I would like to use SJphone softphone for above purpose.
> 
> 
All SIp authentications are done with MD5 basic digest, not with plain 
text auth. Plain text auth was remove from SIP a long time ago.

/O

asterisk users - Jan 2006 - SIP security

[Asterisk-Users] SIP security

[Asterisk-Users] SIP security