Package: kphone Version: 1:4.1.0-2 Severity: normal Hi!
I discovered the following behavior of kphone: When I start up kphone and kphone tries to register with a SIP Registrar, the SIP Registrar sends 401 Unauthorized Response with the header field: WWW-Authenticate: Digest realm="abc.ch", nonce="427f4ed676e719cad44d2a46de09894e77ca6c16" As a reaction to this, kphone asks for the password. So far just normal... But asking the passwort from the user in a question window, it displays Server "xyz.abc.ch", which it takes from the local configuration for Default Outbound Proxy, instead of the WWW-Authenticate (realm) header field. When I provide the password for realm "abc.ch", the authentcation fails. Kphone sends in the INVITE: Authorization: Digest username="test", realm="abc.ch", nonce="427f4ed676e719cad44d2a46de09894e77ca6c16", uri="sip:xyz.abc.ch", cnonce="abcdefghi", nc=00000001, response="6471881d832fa1e92d9a905c0ffebd78", opaque="", algorithm="MD5" I guess it calculates the "response" with the wrong realm/Server value. Notes: - In the examples I have replaced the real values with "abc.ch" and "xyz.abc.ch" for privacy reasons. - Default Outbound Proxy: sip:xyz.abc.ch - SIP address: sip:[EMAIL PROTECTED] - Realm: abc.ch - authentication username: test - The IP address (DNS A record) of "xyz.abc.ch" points to the SIP Registrar - The IP address (DNS A record) of "abc.ch" is not pointing to the SIP Registrar - the SRV and NAPTR records for abc.ch are configured in that way, that SIP requests are sent to xyz.abc.chm if the SIP client queries the SRV records Issues: - Authentication doesn't work, if Default Outbound Proxy is not the same as the realm. - When asked for the password, the "Server" value is taken form the local Configuration Default Outbound Proxy instead of from the 401 message. - Also in the config file ~/.qt/kphonerc kphone saves the wrong value from the Default Outbound Proxy setting (to SipServer in Registration section): [Registration] AutoRegister=Yes Password=secret SipServer=xyz.abc.ch SipUri="Tester" <sip:[EMAIL PROTECTED]> UserName=test qValue= cheers, Bernie -- System Information: Debian Release: 3.1 APT prefers testing APT policy: (990, 'testing'), (500, 'unstable') Architecture: powerpc (ppc) Kernel: Linux 2.6.9-powerpc Locale: LANG=en_US.ISO-8859-15, LC_CTYPE=de_CH (charmap=ISO-8859-1) Versions of packages kphone depends on: ii libc6 2.3.2.ds1-21 GNU C Library: Shared libraries an ii libgcc1 1:3.4.3-12 GCC support library ii libice6 4.3.0.dfsg.1-12 Inter-Client Exchange library ii libpng12-0 1.2.8rel-1 PNG library - runtime ii libqt3c102-mt 3:3.3.4-3 Qt GUI Library (Threaded runtime v ii libsm6 4.3.0.dfsg.1-12 X Window System Session Management ii libssl0.9.7 0.9.7e-3 SSL shared libraries ii libstdc++5 1:3.3.5-12 The GNU Standard C++ Library v3 ii libx11-6 4.3.0.dfsg.1-12 X Window System protocol client li ii libxext6 4.3.0.dfsg.1-12 X Window System miscellaneous exte ii libxt6 4.3.0.dfsg.1-12 X Toolkit Intrinsics ii xlibs 4.3.0.dfsg.1-12 X Keyboard Extension (XKB) configu -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
