[OpenSIPS-Users] Accounting: How to avoid a fraudulent BYE with lower CSeq?

[Victor Pascual Ávila]

On Fri, Dec 19, 2008 at 3:22 PM, Bogdan-Andrei Iancu
<bogdan at voice-system.ro> wrote:
> Hi Iñaki,
>
> Have you consider requesting auth for the BYE ? from SIP point of view
> is perfectly valid....

I'm afraid this would only prevent external attackers but does not
protect you from your own customers-- guys who have the credentials
and wanna call for free.

Cheers,
-- 
Victor Pascual Ávila