[asterisk-dev] Rate limiting traffic to address potential DoS issues?

Nic Bellamy nicb-lists at vadacom.co.nz
Wed Sep 27 20:14:02 MST 2006


John Lange wrote:

>A while back I posted a suggestion for limiting the impact of 1/2 open
>SIP authentication attacks based on the principal of syncookies:
>
>http://lists.digium.com/pipermail/asterisk-dev/2006-July/021709.html
>  
>
There's the "opaque" field for authorization headers that is basically 
designed to carry the server state for exactly this purpose... it just 
appears Asterisk doesn't actually use it, except when it's the one being 
challenged.

Cheers,
    Nic.

-- 
Nic Bellamy,
Head Of Engineering, Vadacom Ltd - http://www.vadacom.co.nz/



More information about the asterisk-dev mailing list