[asterisk-dev] Rate limiting traffic to address potential DoS
issues?
Nic Bellamy
nicb-lists at vadacom.co.nz
Wed Sep 27 20:14:02 MST 2006
John Lange wrote:
>A while back I posted a suggestion for limiting the impact of 1/2 open
>SIP authentication attacks based on the principal of syncookies:
>
>http://lists.digium.com/pipermail/asterisk-dev/2006-July/021709.html
>
>
There's the "opaque" field for authorization headers that is basically
designed to carry the server state for exactly this purpose... it just
appears Asterisk doesn't actually use it, except when it's the one being
challenged.
Cheers,
Nic.
--
Nic Bellamy,
Head Of Engineering, Vadacom Ltd - http://www.vadacom.co.nz/
More information about the asterisk-dev
mailing list