OpenSIPS Security Audit, fully disclosed

If almost one year ago we were releasing the first results of the security audit performed by of Enable Security over the OpenSIPS 3.2 code, now is the right time for the full disclosure. What was missing? As per the initial post, we hold back all the information about how to reproduce the crashes. Why? … Continue reading OpenSIPS Security Audit, fully disclosed

How To Generate Self-Signed STIR/SHAKEN Certificates

After having received some positive feedback on our presentation on the topic at hand at ClueCon '22, let's go through a more detailed run-down of all steps required, from a cryptographic point of view, in order to first become a fictive STIR/SHAKEN CA (Certification Authority), then to begin issuing signed certificates for various (also fictive) … Continue reading How To Generate Self-Signed STIR/SHAKEN Certificates

MSRP Gateway

The majority of SIP User Agents still only support the MESSAGE method for providing Instant Messaging. However, modern Unified Communications(UC) ecosystems and more advanced messaging services, such as RCS(Rich Communication Services), are built on top of Session Mode messaging, which uses the MSRP protocol. With the addition of the new msrp_gateway module, OpenSIPS 3.3 introduces … Continue reading MSRP Gateway

OpenSIPS Contact Center, or blending chats and calls

OpenSIPS has the Call Center module for a while, a module that allows queuing and dispatching (to agents) of RTP based calls (audio or video). OpenSIPS 3.3 focused on instant messaging, mainly session based messaging (or chat) in the context of IMS and Unified Communication (UC). And speaking of UC, the addition of chat (MSRP … Continue reading OpenSIPS Contact Center, or blending chats and calls

Using the Diameter Client Capability of OpenSIPS 3.3

In the previous iteration, OpenSIPS 3.2 introduced a first version of the support for Diameter protocol peering by leveraging the freeDiameter project and its excellent C libraries. Building on top of this, OpenSIPS 3.3 now offers a way of building and sending arbitrary Diameter protocol requests, from the opensips.cfg script. This brief post will teach … Continue reading Using the Diameter Client Capability of OpenSIPS 3.3

The MSRP eco-system in OpenSIPS 3.3

Yes, the OpenSIPS 3.3 focuses on messaging and MSRP is a key element when talking about messaging/chat sessions. Packing messages into sessions enables the creation of advanced chatting / conferencing services in the RCS and UC world. The MSRP stack The MSRP implementation in OpenSIPS 3.3 comes as complex stack, covering from the lowest protocol … Continue reading The MSRP eco-system in OpenSIPS 3.3

OpenSIPS Security Audit, facts and results

Almost an year ago we were boiling the idea of starting a professional security audit over the freshly released OpenSIPS 3.2 . What were the reasons for doing this and how the audit actually took shape, as targets, methodology and deliverables, is described in this original manifest. Of course, nothing would have been possible without … Continue reading OpenSIPS Security Audit, facts and results

Fine-Grained TCP Configuration Using the “tcp_mgm” Module

OpenSIPS 3.3 introduces a new module which offers full control over the configuration of individual TCP connections. From filtering by the employed TCP-based protocol (e.g. BIN, TLS, MSRP, SMPP, etc.), all the way down to specific combinations of remote and local IPv4 or IPv6 addresses, OpenSIPS platform developers now have the ability to cherry-pick and … Continue reading Fine-Grained TCP Configuration Using the “tcp_mgm” Module