OpenSIPS Security Audit, facts and results

Almost an year ago we were boiling the idea of starting a professional security audit over the freshly released OpenSIPS 3.2 . What were the reasons for doing this and how the audit actually took shape, as targets, methodology and deliverables, is described in this original manifest. Of course, nothing would have been possible without … Continue reading OpenSIPS Security Audit, facts and results

Fine-Grained TCP Configuration Using the “tcp_mgm” Module

OpenSIPS 3.3 introduces a new module which offers full control over the configuration of individual TCP connections. From filtering by the employed TCP-based protocol (e.g. BIN, TLS, MSRP, SMPP, etc.), all the way down to specific combinations of remote and local IPv4 or IPv6 addresses, OpenSIPS platform developers now have the ability to cherry-pick and … Continue reading Fine-Grained TCP Configuration Using the “tcp_mgm” Module

OpenSIPS Control Panel 9 – stepping into a new era

The OpenSIPS Control Panel accompanied OpenSIPS already for some time. And besides the sub-version aiming to align to the OpenSIPS versions (i.e. 8.3.1), the OpenSIPS Control Panel had its own evolution, reflected in the major version. For example, the last major boost was version 8, were the front-end part was re-design with a new modern … Continue reading OpenSIPS Control Panel 9 – stepping into a new era

Managing RCS Capabilities with OpenSIPS

At its core, RCS (Rich Communication Services) is a suite of specifications from OMA[1] and GSMA[2] aimed at replacing SMS messages with a richer messaging system equipped with added services such as group chat, message read receipts, file and file thumbnail transfers, download pausing and resuming, geo-location push, to name a few. But what extensions … Continue reading Managing RCS Capabilities with OpenSIPS

OpenSIPS 3.3 – Messaging in the IMS and UC ecosystems

SIP is more than voice and video, it is also instant messaging and presence. Even if the traditional SIP services are more voice focused, the Instant Messaging (IM) gained a lot if importance and traction in the context of IP Multimedia Subsystem (IMS) and Unified Communications (UC). Messaging in IMS Thanks to the large adoption … Continue reading OpenSIPS 3.3 – Messaging in the IMS and UC ecosystems

The OpenSIPS Security Audit is happening

Couple of months ago, after exchanging some ideas we Sandro Gauci from Enable Security, we saw as plausible the project of performing a professional Security Audit (PenTests) for OpenSIPS 3.2, with public results and benefits for the whole project and community. So, we embarked in the quest of making that possible, to put together the … Continue reading The OpenSIPS Security Audit is happening

Getting Started With Diameter In OpenSIPS 3.2

This blog post will briefly talk about how RADIUS and Diameter work, how we managed to incorporate Diameter into OpenSIPS 3.2 and what we have built on top of it so far. Short Protocol Intro The RADIUS spec first appeared in 1997 and was revised in 2000. Its purpose is to offer Authentication (Are the … Continue reading Getting Started With Diameter In OpenSIPS 3.2