Jonathan Rosenberg wrote:
> If you are worried about cases of local proxies in
untrusted networks,
> separate from your home proxy - well there are tons of
problems in that
> model and its something we need to discourage.
I think we're worried about having two authentication
domains -- the one
operated by your home proxy (and possibly any
"tweeners" like the edge
proxy), and the one operated by a 3rd party from who you
acquire
services but that does not necessarily have a business
relationship with
and transitive trust of your home proxy. Today, the 3rd
party would do
digest auth (or with SIPS, maybe basic), but that has its
own set of issues.
--
Dean
_______________________________________________
Sip mailing list https://ww
w1.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use sip-implementors cs.columbia.edu for questions on current
sip
Use sippingietf.org for new developments on the application of
sip
|
