[VOIPSEC] VoIP Sniffer

Alejandro Cabrera Obed acabrera at sintys.gov.ar
Mon Sep 15 08:03:41 CDT 2008 

Dear, thank you for you support about my encryption matter.

I have Asterisk 1.4.13 without any ZRTP patch, and my clients are:
Twinkle+libzrtp (Linux Debian) and SJPhone+Zfone (Windows).

In Twinkle to Twinkle calls I can see the Short Authentication String
(SAS) and after accepting it, I see the encryption padlock....so I succeed.

But in Twinkle to SJPhone or SJPhone to SJPhone calls, encryption fails.

Phill Zimerman told me to apply the zrtp patch to Asterisk, which is on
the zfone.org web page....I've no applied it yet, because I ask myself:
if I move from softfones to IP phones next month -always using Asterisk
as my SIP server-, what' s the sense to apply the zrtp patch from Phill
Zimerman if IP phones don't work with zrtp as long as I know ??? I need
a more universal encryption method.

Special thanks again !!!

Alejandro


Dittmann, Werner (NSN - DE/Munich) wrote:
> All,
>
> regarding ZRTP: I've done an implementation of ZRTP in C++
> and Java (both use the same architecture and structure). The
> Twinkle SIP client uses the C++ implementation and the SIP
> Communicator uses the Java implementation. Both implementations
> use GPL V3 as license and are part of the GNU ccRTP project.
>
> I've done a lot of interop tests with Phil Zimmermann's 
> Zfone implementation and it works :-)
>
> If you need some more information just drop me a line.
>
> Regards,
> Werner
>
>   
>> -----Ursprüngliche Nachricht-----
>> Von: voipsec-bounces at voipsa.org 
>> [mailto:voipsec-bounces at voipsa.org] Im Auftrag von ext 
>> Alejandro Cabrera Obed
>> Gesendet: Freitag, 12. September 2008 15:39
>> An: kyung moon lee
>> Cc: voipsec at voipsa.org
>> Betreff: Re: [VOIPSEC] VoIP Sniffer
>>
>> Dar Kyung, what you wrote is very interesting...I'm trying to 
>> secure my
>> SIP/RTP calls using ZRTP from Phill Zimerman but I don't 
>> succed at all:
>> some clients work well and some other don't. Now I'll see 
>> your sniffer.
>>
>> Please can you tell me what is the most popular mechanism nowdays to
>> secure the voip calls within an environment with IP telephones and
>> softphones ???
>>
>> Special thanks
>>
>> Alejandro
>>
>>
>>
>> kyung moon lee wrote:
>>     
>>> Hi, all, I am a programmer in Korea.
>>> I've got no information about discussion of VoIP issue, and I
>>> should've known this mailing list.
>>> Anyway, let me introduce myself to you.
>>> A few years ago, I was a VoIP client programmer in 
>>>       
>> Dialpad(Korea), and
>>     
>>> I've developed VoIP client software.
>>> Nowadays, I am very interested in security VoIP.
>>> I wish to share many other information about VoIP.
>>> Thank you.
>>>
>>> ps : I will tell you my program that can sniff incoming and 
>>>       
>> outgoding
>>     
>>> RTP packet, replay in real time and change RTP contents.
>>>
>>>       
>> http://www.gilgil.co.kr/bbs/view.php?id=pds&page=2&sn1=&divpag
>> e=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=359
>>     
>>> _______________________________________________
>>> Voipsec mailing list
>>> Voipsec at voipsa.org
>>> http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
>>>   
>>>       
>> _______________________________________________
>> Voipsec mailing list
>> Voipsec at voipsa.org
>> http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
>>
>>

More information about the Voipsec mailing list