[VoiceOps] Billing of Forwarded Calls

anorexicpoodle anorexicpoodle at gmail.com
Wed Nov 11 17:29:28 EST 2009


Actually I would be far more concerned about the spoofing of refer
messages, which is one of the message types it doesn't auth. It struck
me as unusual that it would auth a bye and not a refer. 



On Wed, 2009-11-11 at 16:20 -0600, Lee Riemer wrote:
> I agree.  Shouldn't be too hard if you're sniffing the line, say on a 
> wi-fi connection.  Listen for INVITEs, pull dialog info, spoof CANCELs.  
> Nice little DOS attack.
> 
> Alex Balashov wrote:
> > Lee Riemer wrote:
> >
> >> What's wrong with authenticating BYEs and CANCELs?  I see them as 
> >> just as important as an INVITE.  Anyone can some around, sniff the 
> >> dialog and spoof a BYE or CANCEL.
> >
> > They'd have to spoof a Call-ID, From and To tags, correct CSeqs, any 
> > loose-routing parameters present in the Route and/or Record-Route 
> > headers, and the Route header itself.
> >
> > I suppose it *could* be done... but...
> >




More information about the VoiceOps mailing list