> "JColp" == Joshua Colp writes:
>> Are you saying that asterisk doesn't care whether the sip is secure and
>> will happily negotiate srtp depending only on whether the remote is
>> willing to do so? (That may come off as harsh; I do not mean it to be
>> so, since it is what I want. :)
JCol
James Cloos wrote:
"JColp" == Joshua Colp writes:
JColp> The media is not carried over the SIP signaling,
Please give some credit, eh?
Given the sdp-negotiated srtp is not secure unless the sip is carried
over tls, the Best Practice is to require tls (or even sips: uris) to
agree to srtp.
> "JColp" == Joshua Colp writes:
JColp> The media is not carried over the SIP signaling,
Please give some credit, eh?
Given the sdp-negotiated srtp is not secure unless the sip is carried
over tls, the Best Practice is to require tls (or even sips: uris) to
agree to srtp.
Are you saying th
James Cloos wrote:
Given a box with a sip proxy listen(2)ing on 0.0.0.0 and chan_sip or
chan_pjsip listen(2)ing on 127.0.0.1, with ast sending rtp directly,
will ast negotiate srtp or dtls even ast and the proxy speak sip in
the clear over the lo interface?
Avoiding encryption over lo can aid de
Given a box with a sip proxy listen(2)ing on 0.0.0.0 and chan_sip or
chan_pjsip listen(2)ing on 127.0.0.1, with ast sending rtp directly,
will ast negotiate srtp or dtls even ast and the proxy speak sip in
the clear over the lo interface?
Avoiding encryption over lo can aid debugging, but will doi
