[SIPForum-discussion] Reg: Small doubt in SIP message..

Wed Jul 27 10:40:01 UTC 2011

If you mean to say that the intruder will add an extra From header, then the
proxy will reply with 400 bad request.Although the proxy doesnt really care
bout msg contents, it cares bout the syntax.So it,ll send the above
response.If the intruder adds the value after it is passed from proxy, then
UAS sends the response.

On Tue, Jul 26, 2011 at 9:29 AM, Karthikeyan Selvaraj <
karthikeyan.selvaraj at sasken.com> wrote:

>  ** **
>
> ** **
>
> Hi, I know call originator can't send multiple TO and FROM.  ****
>
> ** **
>
> The senario is, the originator send the SIP request with single TO and FROM
> headers. ****
>
> Suppose some intruders (hackers), possible to add one more TO or FROM
> headers in the sip request. TO doesn't have any tag in the request. FROM
> contains the tag, so intruder add his won FROM header with some tag value.
> ****
>
> ** **
>
> In this case how the proxy will behave….****
>
> ** **
>
> ** **
>
> ** **
>
> Regards,****
>
> Karthikeyan S****
>
>  ****
>
> ** **
>
> *From:* Manoj Priyankara [mailto:manoj0915 at gmail.com]
> *Sent:* Tuesday, July 26, 2011 6:36 AM
> *To:* Karthikeyan Selvaraj
>
> *Subject:* Re: [SIPForum-discussion] Reg: Small doubt in SIP message..****
>
> ** **
>
> Hi, this is obvious. From and to headers represent the call originator and
> the termination. There is no meaning to have multiple from and to headers.
> Br, Manoj****
>
> On 26-Jul-2011 2:15 AM, "Karthikeyan Selvaraj" <
> karthikeyan.selvaraj at sasken.com> wrote:
> >
> > hi,
> > ya its correct. I know it,
> > Suppose, intruder hack my SIP message and possible to add one more TO or
> FROM header.
> > in these case what will happen in server side. either accept or reject.
> > There is no special rule for TO and FROM headers in RFC 3261.
> >
> >
> > Regards,
> > Karthikeyan S
> >
> >
> > From: tester voip [mailto:tester.voip1 at gmail.com]
> > Sent: Monday, July 25, 2011 5:03 PM
> > To: Karthikeyan Selvaraj
> > Cc: franz.edler at kabsi.at; discussion at sipforum.org
> > Subject: Re: [SIPForum-discussion] Reg: Small doubt in SIP message..
> >
> > Please think logicaly also.Is it possible to make a single call from
> different people to different people?
> > FOr example from your phone at the same time how many persons can make a
> call or to how many persons you can make a call.
> > Even if you are having one URI and numerous contacts, is it possible to
> make call to one/more than one person simultaneously from all the contacts.
> > Obviously no.
> > rite?
> > On Mon, Jul 25, 2011 at 4:35 PM, Karthikeyan Selvaraj <
> karthikeyan.selvaraj at sasken.com<mailto:karthikeyan.selvaraj at sasken.com>>
> wrote:
> > hi I checked with RFC3261 , they did't mention any thing about TO and
> FROM headers.
> >
> >
> > Regards,
> > Karthikeyan S
> >
> >
> > From: tester voip [mailto:tester.voip1 at gmail.com<mailto:
> tester.voip1 at gmail.com>]
>
> > Sent: Monday, July 25, 2011 3:53 PM
> > To: Karthikeyan Selvaraj
> > Cc: franz.edler at kabsi.at<mailto:franz.edler at kabsi.at>;
> discussion at sipforum.org<mailto:discussion at sipforum.org>
>
> >
> > Subject: Re: [SIPForum-discussion] Reg: Small doubt in SIP message..
> >
> > Via,Route,Record-Route,Contact(incase of Register) etc can have multiple
> numbers in a msg.
> >
> > But no such rules for TO and FROM headers.
> >
> > Please refer 3261 for more understanding of all the headers.
> >
> > Thanks
> > On Mon, Jul 25, 2011 at 3:47 PM, Karthikeyan Selvaraj <
> karthikeyan.selvaraj at sasken.com<mailto:karthikeyan.selvaraj at sasken.com>>
> wrote:
> > Hi ,
> > As per the below answer, the ROUTE header present in more than one and
> VIA header also.
> > So any special rules for TO and FROM headers.
> >
> >
> > Regards,
> > Karthikeyan S
> >
> >
> > From: tester voip [mailto:tester.voip1 at gmail.com<mailto:
> tester.voip1 at gmail.com>]
>
> > Sent: Monday, July 25, 2011 3:19 PM
> > To: franz.edler at kabsi.at<mailto:franz.edler at kabsi.at>
> > Cc: Karthikeyan Selvaraj; discussion at sipforum.org<mailto:
> discussion at sipforum.org>
>
> > Subject: Re: [SIPForum-discussion] Reg: Small doubt in SIP message..
> >
> > There will b 400 Bad request from UAS/B2B(if in between) as there cant b
> more than 1 such headers in INVITE.
> > On Mon, Jul 25, 2011 at 12:31 AM, Franz Edler <franz.edler at kabsi.at
> <mailto:franz.edler at kabsi.at>> wrote:
> >> suppose the sip message contains more than one TO and FROM headers.
> >> What will happen in server side?
> >> it take top most value or reject the message ?
> > It will (most probably) reject the message.
> >
> > BR
> > Franz
> >
> >
> > _______________________________________________
> > This is the SIP Forum discussion mailing list
> > TO UNSUBSCRIBE, or edit your delivery options, please visit
> http://sipforum.org/mailman/listinfo/discussion
> > Post to the list at discussion at sipforum.org<mailto:
> discussion at sipforum.org>
>
> >
> >
> > ________________________________
> > SASKEN BUSINESS DISCLAIMER: This message may contain confidential,
> proprietary or legally privileged information. In case you are not the
> original intended Recipient of the message, you must not, directly or
> indirectly, use, disclose, distribute, print, or copy any part of this
> message and you are requested to delete it and inform the sender. Any views
> expressed in this message are those of the individual sender unless
> otherwise stated. Nothing contained in this message shall be construed as an
> offer or acceptance of any offer by Sasken Communication Technologies
> Limited ("Sasken") unless sent with that express intent and with due
> authority of Sasken. Sasken has taken enough precautions to prevent the
> spread of viruses. However the company accepts no liability for any damage
> caused by any virus transmitted by this email.
> > Read Disclaimer at http://www.sasken.com/extras/mail_disclaimer.html
> >
> > ****
>
>
> _______________________________________________
> This is the SIP Forum discussion mailing list
> TO UNSUBSCRIBE, or edit your delivery options, please visit
> http://sipforum.org/mailman/listinfo/discussion
> Post to the list at discussion at sipforum.org
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://sipforum.org/pipermail/discussion/attachments/20110727/45dbcc67/attachment-0002.html>