[VoiceOps] Billing of Forwarded Calls

Lee Riemer lriemer at bestline.net
Wed Nov 11 17:49:07 EST 2009


Hmm.... I'll have to check this out.

anorexicpoodle wrote:
> Actually I would be far more concerned about the spoofing of refer
> messages, which is one of the message types it doesn't auth. It struck
> me as unusual that it would auth a bye and not a refer. 
>
>
>
> On Wed, 2009-11-11 at 16:20 -0600, Lee Riemer wrote:
>   
>> I agree.  Shouldn't be too hard if you're sniffing the line, say on a 
>> wi-fi connection.  Listen for INVITEs, pull dialog info, spoof CANCELs.  
>> Nice little DOS attack.
>>
>> Alex Balashov wrote:
>>     
>>> Lee Riemer wrote:
>>>
>>>       
>>>> What's wrong with authenticating BYEs and CANCELs?  I see them as 
>>>> just as important as an INVITE.  Anyone can some around, sniff the 
>>>> dialog and spoof a BYE or CANCEL.
>>>>         
>>> They'd have to spoof a Call-ID, From and To tags, correct CSeqs, any 
>>> loose-routing parameters present in the Route and/or Record-Route 
>>> headers, and the Route header itself.
>>>
>>> I suppose it *could* be done... but...
>>>
>>>       
>
>
>   
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/voiceops/attachments/20091111/3ec386c9/attachment.html>


More information about the VoiceOps mailing list