[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Asterisk-Security] Opportunistic encryption

To: "Asterisk Security Discussion" <asterisk-security@xxxxxxxxxxxxxxxx>
Subject: Re: [Asterisk-Security] Opportunistic encryption
From: "Enzo Michelangeli" <enzomich@xxxxxxxxx>
Date: Mon, 24 Jul 2006 11:20:21 +0800
List-archive: <http://lists.digium.com/pipermail/asterisk-security>
List-help: <mailto:asterisk-security-request@lists.digium.com?subject=help>
List-id: Asterisk Security Discussion <asterisk-security.lists.digium.com>
List-post: <mailto:asterisk-security@lists.digium.com>
List-subscribe: <http://lists.digium.com/mailman/listinfo/asterisk-security>, <mailto:asterisk-security-request@lists.digium.com?subject=subscribe>
List-unsubscribe: <http://lists.digium.com/mailman/listinfo/asterisk-security>, <mailto:asterisk-security-request@lists.digium.com?subject=unsubscribe>
References: <44BD422D.1090002@xxxxxxxx><p06230904c0e2f6551cf5@[204.91.156.3]> <1153257761.26522.94.camel@xxxxxxxxxxxxxxxx> <p06230917c0e6be7ec872@[10.100.11.123]><44C111EB.7040706@xxxxxxxx> <p06230920c0e6cb79d311@[10.100.11.123]><44C168F8.5020903@xxxxxxxx> <03cb01c6ad2c$77d71b30$0800a8c0@EMLT><44C17EBF.5010207@xxxxxxxx> <03f501c6ad35$92dc4960$0800a8c0@EMLT><44C19B95.9030402@xxxxxxxx> <046601c6ad62$cbfbb9b0$0800a8c0@EMLT> <44C2B8A4.7060909@xxxxxxxx> <05aa01c6ae08$a6c5f380$0800a8c0@EMLT><44C2F0B7.2000501@xxxxxxxx> <44C3BB81.1000200@xxxxxxxx>
Reply-to: Asterisk Security Discussion <asterisk-security@xxxxxxxxxxxxxxxx>
Sender: asterisk-security-bounces@xxxxxxxxxxxxxxxx

------ Original Message -----From: "Duane" <duane@xxxxxxxx>

Sent: Monday, July 24, 2006 2:10 AM

For what it's worth I have a howto written up about setting up asterisk
with SRTP etc...

http://www.e164.org/wiki/AsteriskSRTP

Thanks. But how is a common session key established in this case? If it israndomly generated and transmitted in cleartext in the SDP content, as itappears from http://bugs.digium.com/view.php?id=5413 (use of "a=crypto ....inline:....), then the method only makes sense with SIP-over-TLS.


Enzo

_______________________________________________
--Bandwidth and Colocation provided by Easynews.com --

Asterisk-Security mailing list
To UNSUBSCRIBE or update options visit:
  http://lists.digium.com/mailman/listinfo/asterisk-security

Follow-Ups:
- Re: [Asterisk-Security] Opportunistic encryption
  - From: Duane
- Re: [Asterisk-Security] Opportunistic encryption
  - From: Duane

References:
- [Asterisk-Security] Opportunistic encryption
  - From: Duane
- Re: [Asterisk-Security] Opportunistic encryption
  - From: John Todd
- Re: [Asterisk-Security] Opportunistic encryption
  - From: Bret McDanel
- Re: [Asterisk-Security] Opportunistic encryption
  - From: John Todd
- Re: [Asterisk-Security] Opportunistic encryption
  - From: Duane
- Re: [Asterisk-Security] Opportunistic encryption
  - From: John Todd
- Re: [Asterisk-Security] Opportunistic encryption
  - From: Duane
- Re: [Asterisk-Security] Opportunistic encryption
  - From: Enzo Michelangeli
- Re: [Asterisk-Security] Opportunistic encryption
  - From: Duane
- Re: [Asterisk-Security] Opportunistic encryption
  - From: Enzo Michelangeli
- Re: [Asterisk-Security] Opportunistic encryption
  - From: Duane
- Re: [Asterisk-Security] Opportunistic encryption
  - From: Enzo Michelangeli
- Re: [Asterisk-Security] Opportunistic encryption
  - From: Duane
- Re: [Asterisk-Security] Opportunistic encryption
  - From: Enzo Michelangeli
- Re: [Asterisk-Security] Opportunistic encryption
  - From: Duane
- Re: [Asterisk-Security] Opportunistic encryption
  - From: Duane

Prev by Date: Re: [Asterisk-Security] Opportunistic encryption
Next by Date: Re: [Asterisk-Security] Opportunistic encryption
Previous by thread: Re: [Asterisk-Security] Opportunistic encryption
Next by thread: Re: [Asterisk-Security] Opportunistic encryption
Index(es):
- Date
- Thread

This mailing list archive is a service of Copilotco.