[asterisk-bugs] [JIRA] (ASTERISK-24890) res_pjsip_acl: patch proposal - endpoint specific ACL
Rusty Newton (JIRA)
noreply at issues.asterisk.org
Mon Mar 23 08:59:35 CDT 2015
[ https://issues.asterisk.org/jira/browse/ASTERISK-24890?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=225556#comment-225556 ]
Rusty Newton commented on ASTERISK-24890:
-----------------------------------------
Features requests without patches are not accepted through the issue tracker. Features requests are openly discussed on the mailing lists, forums, and IRC [1]. Please see the Asterisk Issue Guidelines [2] for more information on feature request and patch submission.
[1] http://asterisk.org/community/discuss
[2] https://wiki.asterisk.org/wiki/display/AST/Asterisk+Issue+Guidelines
> res_pjsip_acl: patch proposal - endpoint specific ACL
> -----------------------------------------------------
>
> Key: ASTERISK-24890
> URL: https://issues.asterisk.org/jira/browse/ASTERISK-24890
> Project: Asterisk
> Issue Type: Improvement
> Security Level: None
> Components: Resources/res_pjsip_acl
> Affects Versions: 13.2.0
> Reporter: Dmitriy Serov
> Labels: Security
>
> I continue to migrate from asterisk 11 to 13.2 and continues to face problems of compatibility.
> chan_sip has a very good ability to limit registration for a particular PEER to the specified set of IP addresses. I have not found such an opportunity in res_pjsip.
> ACL offers only limit of the IP packet or contact without being tied to a particular endpoint. Because registration restrictions by IP require only part of endpoints, then using version 13.2 all registrations are unprotected, insecure.
> I propose to implement an option to specify the endpoint in ACL section.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
More information about the asterisk-bugs
mailing list