[asterisk-dev] Client Puzzle Protocol in SIP

[Benny Amorsen]

Tzafrir Cohen <tzafrir.cohen at xorcom.com> writes:

> If this makes the reply to the invite longer, then it has increased the
> impact of Asterisk as a potential amplifier for DoS attacks (think of
> the attacker sending 100,000 invites to my PBX with your PBX as the
> source address)

If it makes the invite itself correspondingly longer, the impact not
increased.


/Benny