Correct auth, but based on stale nonce received from
From Kolmisoft Wiki
Jump to navigationJump to search
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.
Looks like this:
[Oct 7 23:27:30] NOTICE[2056]: chan_sip.c:8866 check_auth: Correct auth, but based on stale nonce received from '<sip:ac009602@21.11.2.1>'
It means that a SIP device is re-using an old authentication challenge. If it still registers and can place calls, there's no problem to worry about. It's just a warning. source
Comment from source chan_sip.c:
/* We got working auth token, based on stale nonce. Since we never received our "current" nonce no need to generate a new one */
It can be that someone wants to register with a sniffed SIP packet.
It's basically the nonce="" value is not the same Asterisk sent for that REGISTER session. source
This NOTICE is only seen when sip debug is enabled. From chan_sip.c:
if (sipdebug)
ast_log(LOG_NOTICE, "Correct auth, but based on stale nonce received from '%s'\n", get_header(req, "To"));
Execute:
sip set debug off
in Asterisk CLI to hide this message.
