[OpenSER-Users] How to avoid malicious BYE that update accounting "StopTime"?

Sri Rao nsrirao at gmail.com
Fri Feb 8 18:18:57 CET 2008


An already ended call will have no matching dialog/transaction existing in
P1. So, "malicious" BYEs are treated as non-existent dialog/transactions. I
doubt if it even makes it to the proxy core as it would be discared by the
transaction layer itself.


On Feb 8, 2008 11:54 AM, Iñaki Baz Castillo <ibc at in.ilimit.es> wrote:

> On Friday 08 February 2008 17:17:08 Iñaki Baz Castillo wrote:
>
> > How to avoid it? how to avoid anyone sending a malicious BYE with
> From&To
> > tags and Call-ID from any other already ended call?
>
> Maybe the only solution is using a B2BUA for accounting that only performs
> an
> UPDATE action when receiving a BYE if the dialog really exist?
>
>
> --
> Iñaki Baz Castillo
> ibc at in.ilimit.es
>
> _______________________________________________
> Users mailing list
> Users at lists.openser.org
> http://lists.openser.org/cgi-bin/mailman/listinfo/users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.kamailio.org/pipermail/users/attachments/20080208/c40d3c7e/attachment.htm 


More information about the Users mailing list