Fix a security issue where sending a REGISTER with a differing username in the From

URI and Authorization header would reveal whether it was valid or not. (AST-2009-008) git-svn-id: http://svn.digium.com/svn/asterisk/branches/1.4@227700 f38db490-d61c-443f-a65b-d21fe96a405b
author: file <file@f38db490-d61c-443f-a65b-d21fe96a405b> 2009-11-04 19:17:39 +0000
committer: file <file@f38db490-d61c-443f-a65b-d21fe96a405b> 2009-11-04 19:17:39 +0000
commit: da1ef326e63d794616c75bdf78e08973b8c2c142 (patch)
tree: d412adbf3f0f4c2f63d2db8ff038b3027c654bea
parent: 0f8a766cd8cfb8dd16d87663c86077ea9039554a (diff)
1 files changed, 0 insertions, 2 deletions
diff --git a/channels/chan_sip.c b/channels/chan_sip.c
index fdd3dc7c4..e87d7a154 100644
--- a/channels/chan_sip.c
+++ b/channels/chan_sip.c
@@ -9360,8 +9360,6 @@ static enum check_auth_result register_verify(struct sip_pvt *p, struct sockaddr
 			   Asterisk uses the From: username for authentication. We need the
 			   users to use the same authentication user name until we support
 			   proper authentication by digest auth name */
-			transmit_response(p, "403 Authentication user name does not match account name", &p->initreq);
-			break;
 		case AUTH_NOT_FOUND:
 		case AUTH_PEER_NOT_DYNAMIC:
 		case AUTH_ACL_FAILED:
author	file <file@f38db490-d61c-443f-a65b-d21fe96a405b>	2009-11-04 19:17:39 +0000
committer	file <file@f38db490-d61c-443f-a65b-d21fe96a405b>	2009-11-04 19:17:39 +0000
commit	da1ef326e63d794616c75bdf78e08973b8c2c142 (patch)
tree	d412adbf3f0f4c2f63d2db8ff038b3027c654bea
parent	0f8a766cd8cfb8dd16d87663c86077ea9039554a (diff)