Difference between revisions of "Correct auth, but based on stale nonce received from"

From Kolmisoft Wiki
Jump to navigationJump to search
Line 19: Line 19:
<br>
<br>


This NOTICE is only seen when sip debug is enabled. From [https://reviewboard.asterisk.org/r/289/diff/1/ chan_sip.c]:
This NOTICE is only seen when '''sip debug''' is enabled. From [https://reviewboard.asterisk.org/r/289/diff/1/ chan_sip.c]:


  if (sipdebug)
  if (sipdebug)
     ast_log(LOG_NOTICE, "Correct auth, but based on stale nonce received from '%s'\n", get_header(req, "To"));
     ast_log(LOG_NOTICE, "Correct auth, but based on stale nonce received from '%s'\n", get_header(req, "To"));

Revision as of 20:43, 7 October 2009

Looks like this: 

[Oct  7 23:27:30] NOTICE[2056]: chan_sip.c:8866 check_auth: Correct auth, but based on stale nonce received from '<sip:ac009602@21.11.2.1>'


It means that a SIP device is re-using an old authentication challenge. If it still registers and can place calls, there's no problem to worry about. It's just a warning. source



It can be that someone wants to register with a sniffed SIP packet.

It's basically the nonce="" value is not the same Asterisk sent for that REGISTER session. source




This NOTICE is only seen when sip debug is enabled. From chan_sip.c: 

if (sipdebug)
    ast_log(LOG_NOTICE, "Correct auth, but based on stale nonce received from '%s'\n", get_header(req, "To"));
Retrieved from "https://wiki.kolmisoft.com/index.php?title=Correct_auth,_but_based_on_stale_nonce_received_from&oldid=5373"