similar to: Asterisk encrypted authentication for clients

On 10/28/2015 06:37 PM, Pete Mundy wrote: > Hi Motty, > > Isn't the whole point of the nonce in a SIP registration to ensure the > secret doesn't go on the wire in plain-text? Is this not enough, or > are you looking to hide the username too? > > (if so, fair 'nuf, just wondering why :) > > Pete > > Ps, if so then I think TLS is the missing part of

Hello, I have a user that prefers Soft SIP phone install on his laptop, for security reasons I have enable TLS on our Asterisk server to support TLS authentication, It works well with hard phones. Has anybody in this forum use SIP Soft phones with TLS authentication enabled? Any suggestions? Thanks, Motty -------------- next part -------------- An HTML attachment was scrubbed... URL:

Hi All, I've been reading about Phil Zimmermann's ZRTP encryption scheme for SIP clients. This seems attactive but I don't use soft phones. I'm guessing that we'd need ZRTP support in Asterisk in order to use it to secure calls from hard phones. There seem to be issues with SRTP key exhange between various devices. So much so that the IETF is working on a standardization

Microsip (Windows) is free and small. 2.5Mb download, 10Mb RAM usage, does everything I need and configuring TLS is a doddle. http://www.microsip.org/ On 16 February 2017 at 13:04, Max Grobecker <max.grobecker at ml.grobecker.info> wrote: > Hello, > > I'm a big fan of PhonerLite. > It's more poplar in Germany, but also available in English language. > This client

Dear all, I have Asterisk 1.4.13 and I need to use encryption among Asterisk and my SIP users, and with the RTP data interchanged among users. I prefer the use of ZRTP/SRTP because we use Twinkle and X-Lite/Zfone as our voip clients and they support these encryption mechanism. My question is: do I have to enable any encryption support in Asterisk 1.4.13 ??? Or Asterisk has native encryption

Hello, I would like to setup a mechanism to trigger an alarm if user is deal too many numbers within a very short period of time. Safeguard against users hacked accounts. can someone help? Thanks,

Hi I'm just about to upgrade to version 1.8.29.0 and have compiled with SRTP. However, we exclusively use the asterisk realtime architecture using the mysql connector. Looking at tutorials we have to set encryption=yes and transport=tls for any peer we want encrypted traffic for. Having a look at contrib/realtime/mysql/sippeers.sql from the source code shows that the encryption column is

Friends, The following mail was sent earlier to asterisk-dev and did not cause the amount of discussion I hoped it would. Now that we have a way to secure signalling in IAX2 and SIP in Asterisk svn trunk, we need to start working on the concept of a "secure call" - or does it really matter? In SIP, there's a specification for how I as a domain owner can request all calls to

What's the status of ZRTP supported by Asterisk? There was some discussion on the -dev list and -users list, but it was inconclusive. At about the same timeframe, a bug (#0010024) was opened and updated for several months, but has been "suspended" since late 2007. Does any version (1.4.x, 1.6.x) of Asterisk support ZRTP with clients (or with other servers)? Any successful testing

Hello List I am very interested in developing a research project on security protocol for VoIP, under the GPL. For some time I have been reviewing ZRTP, I would like to know the opinion having regard to whether and under asterisk, but I see that this closed implementations according am Http://bugs.digium.com/view.php?id=10024 Are Zphone and ZRTP the future for the Voip Security? Opinions?

Hello. Do I understand correctly that the current implementation res_pjsip does not support ZRTP? http://lists.digium.com/pipermail/asterisk-dev/2013-December/064401.html Nothing has changed since 2013? P.S. I greatly regret that moved from chan_sip to res_pjsip. Previously used very much lacking, and much of the promise failed. Dmitriy Serov. -------------- next part -------------- An HTML

Dear all, I have an Asterisk server with SIP and IAX softphones clients, and I need to encrypt the voip calls among them: *For SIP clients I use Twinkle which implements the ZRTP/SRTP encryption mechanism client-2-client; I read it's the better security mechanism nowadays created by Phill Zimmerman who created PGP. *For IAX clients I used Kiax but I don't know exactly if there is any

05.10.2015 23:24, Joshua Colp ?????: > On 15-10-05 05:22 PM, Dmitriy Serov wrote: >> Hello. Do I understand correctly that the current implementation >> res_pjsip does not support ZRTP? >> http://lists.digium.com/pipermail/asterisk-dev/2013-December/064401.html > > ZRTP is not supported in Asterisk itself. > >> Nothing has changed since 2013? P.S. I greatly

Hi Josua, Sorry for writing wrong the parameter but i just copy paste the examples on pjsip.conf it wasn?t a "typo? error of timers parameters, i have an error on global tag and can?t load the timers I was getting this : [Apr 29 17:21:49] WARNING[16144]: config.c:1796 process_text_line: parse error: No category context for line 631 of /etc/asterisk/pjsip.conf after fix global issue

Snom default configuration is SRTP enabled. You should disable the SRTP from the phone web GUI configuration Sincerely, Sam Basan From: Mitul Limbani [mailto:mitul at enterux.in] Sent: Thursday, November 12, 2015 5:25 PM To: Asterisk Users Mailing List - Non-Commercial Discussion <asterisk-users at lists.digium.com> Subject: Re: [asterisk-users] No sound with internal

Hi all, We're testing TLS and SRTP on Asterisk 1.8.10.0 and have it working with a commerical (not self-sign) AlphaSSL wildcard (GlobalSign) using Blink Lite 1.6.2 as per https://wiki.asterisk.org/wiki/display/AST/Secure+Calling+Tutorial We've tested with Bria on an iPhone and that doesn't recognised the commercial CA (GlobalSign Root CA). On a Yealink 28P with V60/V61 is registers

Hello, I would like to encrypt password between Asterisk servers and clients. is there an easy way to do so? I am running Asterisk 1.8.22.0 built on CentOS 6.3 Thanks, .Motty -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.digium.com/pipermail/asterisk-users/attachments/20150729/68b59f7c/attachment.html>

Skipped content of type multipart/alternative-------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Esta =?ISO-8859-1?Q?=E9?= uma parte de mensagem assinada digitalmente Url : http://lists.digium.com/pipermail/asterisk-users/attachments/20070523/441a4928/attachment.pgp

Dear people, does anybody try the ZRTP patch for Asterisk in order to have ZRTP encrytion among SIP/RTP calls ??? In other words, did anybody succesfully implement ZRTP in Asterisk ??? Any documentation about it ??? Special thanks Alejandro

Hello May i please know if asterisk is now supporting sip call encryption. It has been a requirement from one of my client to ensure that all conversation is well secured from any potential sniffers or inside hackers Please help or suggest any solution that you feel may help Kind regards Sam