El Monday 15 October 2007 10:13:22 Iñaki Baz Castillo escribió:
> El Monday 15 October 2007 09:58:36 Iñaki Baz Castillo escribió:
> > How can my OpenSer know which domain this REFER goes? of course the "To"
> > header is not valid at all.
> >
> > Could be a solution a SQL query to "location" table looking for the URI
> > (sip:[EMAIL PROTECTED]:5060) and getting the username and domain of
> > this?
>
> Anyway this solution wouldn't be secure since [EMAIL PROTECTED] could hack
> its "From" header in the REFER and appears as "@domainB.com".

Ops, there is no this issue since the "From" is checked against the auth 
username in "check_from()".

Then the only I need is to store dialog original URI domain.



-- 
Iñaki Baz Castillo
[EMAIL PROTECTED]

_______________________________________________
Users mailing list
Users@openser.org
http://openser.org/cgi-bin/mailman/listinfo/users

Reply via email to