[asterisk-dev] Introduction to ASA - the Asterisk Security Architecture
Michiel van Baak
michiel at vanbaak.info
Tue Oct 14 08:54:49 CDT 2008
On 13:28, Tue 14 Oct 08, Johansson Olle E wrote:
>
> 14 okt 2008 kl. 12.57 skrev Vadim Lebedev:
>
> > Johansson Olle E wrote:
> >> Friends,
> >> I've collected some notes and ideas and produced yet another PDF for
> >> you to look at, read and then discuss.
> >>
> >> http://edvina.net/asterisk/asa-intro.pdf
> >>
> >>
> >>
> > Ole
> >
> > What do you think about possibility to use PAM for authentication?
>
> Authentication schemes depend on the actual application. PAM might work
> in some cases, but for instance not with SIP, since to calculate the
> MD5 hash,
> SIP needs the password in clear text, which I belive PAM would not
> deliver.
> If it does, I'm worried... ;-)
>
> Having said that, PAM might work for manager auth (but again not for
> the MD5 version)
> and other Asterisk applications.
Please dont make it depend on PAM.
There are platforms where you dont have that ;)
--
Michiel van Baak
michiel at vanbaak.eu
http://michiel.vanbaak.eu
GnuPG key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x71C946BD
"Why is it drug addicts and computer aficionados are both called users?"
More information about the asterisk-dev
mailing list