The OpenSIPS Security Audit is happening

Couple of months ago, after exchanging some ideas we Sandro Gauci from Enable Security, we saw as plausible the project of performing a professional Security Audit (PenTests) for OpenSIPS 3.2, with public results and benefits for the whole project and community. So, we embarked in the quest of making that possible, to put together the … Continue reading The OpenSIPS Security Audit is happening

Exploring SSL/TLS libraries for OpenSIPS 3.2

For the purpose of providing secure SIP communication over the TLS protocol, OpenSIPS uses the OpenSSL library, the most popular TLS implementation across the Internet. However, integrating OpenSSL with OpenSIPS has posed a series of challenges starting with OpenSSL version 1.1.0, and has caused quite a few bugs and crashes since then, as presented in … Continue reading Exploring SSL/TLS libraries for OpenSIPS 3.2