Vulnerability Development mailing list archives
Re: Asterisk ignoring replayed libpcap sessions
From: Stefano Zanero <s.zanero () securenetwork it>
Date: Mon, 30 Oct 2006 21:09:12 +0100
nnp wrote:
SIP is carried over UDP.
Yes, that's true, but is it only SIP that you are talking about ? And even in that case... it's not so simple. TCPReplay also replays UDP packets, but if for instance those packets contain nonces, identifiers that can be changed from either side, or other elements of freshness, you can't expect that a server will react correctly to a blind REPLAY of a former session... much in the same way this wouldn't fly with TCP based protocols Stefano
Current thread:
- Re: Asterisk ignoring replayed libpcap sessions Stefano Zanero (Nov 01)
- Re: Asterisk ignoring replayed libpcap sessions nnp (Nov 01)
- Re: Asterisk ignoring replayed libpcap sessions Stefano Zanero (Nov 01)
- Re: Asterisk ignoring replayed libpcap sessions nnp (Nov 01)
- Re: Asterisk ignoring replayed libpcap sessions Matthew Franz (Nov 02)
- Re: Asterisk ignoring replayed libpcap sessions Blue Boar (Nov 02)
- Re: Asterisk ignoring replayed libpcap sessions Stefano Zanero (Nov 01)
- Re: Asterisk ignoring replayed libpcap sessions nnp (Nov 01)
- Re: Asterisk ignoring replayed libpcap sessions nnp (Nov 01)
- <Possible follow-ups>
- Re: Asterisk ignoring replayed libpcap sessions Pravin (Nov 01)
- Re: Asterisk ignoring replayed libpcap sessions Aaron Turner (Nov 01)