[OpenSIPS-Users] Register attack!
Saúl Ibarra Corretgé
saul at ag-projects.com
Tue Nov 2 10:04:28 CET 2010
On 11/02/2010 08:26 AM, Hung Nguyen wrote:
> Hi every body!
>
> I have a problem with attacker as following:
>
>
> attack registrar
>
> register ------------->
> register ------------->
> ...
> register ------------->
>
>
> Attacker send 200 registers/second so registrar server is error. This
> is configuration for register method:
>
> route[2] {
>
> # ----------------------------------------------------------
> # REGISTER Message Handler
> # ----------------------------------------------------------
>
> if (!search("^Contact:[ ]*\*")&& nat_uac_test("7")) {
> setflag(6);
> fix_nated_register();
> fix_nated_contact();
> force_rport();
> };
>
> if (!radius_www_authorize("abc.com")) {
> www_challenge("abc.com", "0");
> exit;
> };
> consume_credentials();
>
> if (!save("location")) {
> sl_reply_error();
> };
> }
>
> Please help me,
>
What is your problem exactly? If you want to mitigate the attack effects
check the 'pike' module documentation, it's very useful in these cases.
Regards,
--
Saúl Ibarra Corretgé
AG Projects
More information about the Users
mailing list