Andrew Bettison d26c3f67e8 Fix broken 'dnaprotocol' tests
Explicitly create identities in 'dnaprotocol' fixtures because
start_servald_instances() no longer does it.

The create_single_identity() function was not setting NAMEA, NAMEB, etc.  when
they contained a space, because of shell misquoting.
(cherry picked from commit 9d8707a0add0c5fd3578abff8ccb18b1325fd36d)
2012-09-28 12:16:55 +09:30
2012-09-12 15:21:50 +09:30
2012-09-28 12:16:55 +09:30
2012-05-11 08:14:00 +09:30
2012-06-27 16:54:42 +09:30
2012-05-11 08:14:00 +09:30
2012-09-06 12:43:06 +09:30
2012-09-05 20:42:50 +09:30
2012-05-24 17:11:55 +09:30
2012-09-05 20:42:50 +09:30
2012-08-09 12:14:32 +09:30
2012-09-05 20:42:50 +09:30
2012-09-28 12:16:55 +09:30
2012-09-06 15:26:40 +09:30
2012-08-27 13:03:13 +09:30
2012-05-14 18:37:32 +09:30
2012-08-21 13:32:55 +09:30
2011-08-10 15:39:40 +02:00
2012-08-23 12:31:07 +09:30
2012-08-23 12:31:07 +09:30
2012-08-23 12:31:07 +09:30
2012-09-05 20:42:50 +09:30
2012-08-23 12:31:07 +09:30
2012-08-09 13:30:52 +09:30
2012-07-24 16:04:59 +09:30
2012-09-05 20:42:50 +09:30
2012-09-05 20:42:50 +09:30
2012-02-23 12:45:42 +10:30
2012-08-23 12:31:07 +09:30
2012-09-28 12:05:22 +09:30
2012-09-28 12:16:55 +09:30
2012-09-06 17:28:40 +09:30
2011-10-25 13:39:14 +10:30

When we were looking at implementing secure calls for OpenBTS it was suggested
that we configure Asterisk to use SIPS/ZRTP. This would have been relatively
easy to setup, however there are a few problems.

Number one is that when Asterisk checks the certificates it will either
validate the certificate (checking the chain of trust and so on) and then
check that the common name attribute on the certificate matches the hostname
of the peer, or it will do none of these checks. This code is in main/tcptls.c
line 206 (in version 1.8.14.1).

This is undesirable in a setup where there is limited or no infrastructure as
there is not likely to be a DNS server setup, or even rigid IP assignments
that would allow a static hosts file based setup. This situation would force
the administrator to disable the checks completely which would allow a trivial
man in the middle attack.

It would be possible to modify Asterisk to have a third way where it validates
the certificate and checks the chain of trust but does not look at the common
name. We decided against this approach as the VOMP channel driver was written
in time to avoid it.

Description
The Serval Project's core daemon that implements Distributed Numbering Architecture (DNA), MDP, VoMP, Rhizome, MeshMS, etc.
Readme
Languages
C 89.4%
Shell 5.9%
Java 2%
M4 1.1%
Assembly 0.6%
Other 0.9%