Page 3 of 4 < 12 3 4 >
Show 40 post(s) from this thread on one page

Audio/video stream recording forums (http://stream-recorder.com/forum/index.php)
-   rtmpdump (http://stream-recorder.com/forum/forumdisplay.php?f=54)
-   -  

Secure token issue

 (http://stream-recorder.com/forum/showthread.php?t=20170)

drbmn 08-24-2015 08:39 PM

Re: Secure token issue


 
LOL Nice message man, you really think you're clever, it will be cracked. just wait. :D

mckv 08-24-2015 10:05 PM

Re: Secure token issue


 
Code:
token=c.r.e.a.t.e.S.t.r.e.a.m

drbmn 08-24-2015 10:21 PM

Re: Secure token issue


 
Quote:
Originally Posted by mckv (Post 79238)
Code:
token=c.r.e.a.t.e.S.t.r.e.a.m
;) Well done, you beat me to it. working here too!

mybeststream 08-25-2015 02:05 AM

Re: Secure token issue


 
Only way is by memory searching, but well, this way i will need too fuscate all secureToken strings, realloc the position, and make my cronjob to 1 hour by hour generate a new token, i would like to see someone updating it every hour :cool:

drbmn 08-25-2015 02:05 AM

Re: Secure token issue


 
Quote:
Originally Posted by mybeststream (Post 79244)
Only way is by memory searching, but well, this way i will need too fuscate all secureToken strings, realloc the position, and make my cronjob to 1 hour by hour generate a new token, i would like to see someone updating it every hour :cool:
We can automate the process, good luck fully securing this. :D

mybeststream 08-25-2015 04:05 AM

Re: Secure token issue


 
No you will not, because i will code an HTTPProvider generating each second a new token and send it by HTTPS to the player, unless you will update it by hand you will do shit about it.

spacechild 08-25-2015 04:10 AM

Re: Secure token issue


 
Quote:
Originally Posted by mybeststream (Post 79164)
Hahah I like to see the people crying now trying to fuck my servers bandwidth for restream or KODI :cool:

Good luck trying to rip my streams now. ;)
Dear owner of mybeststream.xyz (or better, ovcast.com),

I think you completely misunderstood my real intentions, as I did not want to play a nasty trick nor I invited you to a war of mice and cats.

Who cares of f***ing your servers bandwidth, I just asked for help to play on VLC a rtmp stream freely found on the web. What's wrong with it?

Do you think that people watching your streams on your website, instead of using VLC, spare your servers bandwidth instead?

Besides, I feel really surprised and disappointed by your arrogance (also proven by the rude words you put in your swf code), which doesn't fit to the professional role of someone who provide an internet service.

Your obsession for obfuscating and re-directing all the time seems more like an escape, rather than as an attempt to protect the content of what you host.

If you really care about what your website hosts, you'd better simplify things instead of complicating them with pseudo-urls and pseudo-keys. Otherwise even legitimate copyrighters will find it extremely difficult to report possible violations because they won't be able to trace the real source of your hosted streams.

P.S.: being too arrogant and sadist with rtmp dumpers does not help, because the people who want to view a free stream on VLC can be your potential clients too.

I hope you'll be seriously thinking about that, because your way of behaving is the worst promotion you can offer for your service.

mybeststream 08-25-2015 04:21 AM

Re: Secure token issue


 
Quote:
Originally Posted by spacechild (Post 79249)
Dear owner of mybeststream.xyz (or better, ovcast.com),

I think you completely misunderstood my real intentions, as I did not want to play a nasty trick nor I invited you to a war of mice and cats.

Who cares of f***ing your servers bandwidth, I just asked for help to play on VLC a rtmp stream freely found on the web. What's wrong with it?

Do you think that people watching your streams on your website, instead of using VLC, spare your servers bandwidth instead?

Besides, I feel really surprised and disappointed by your arrogance (also proven by the rude words you put in your swf code), which doesn't fit to the professional role of someone who provide an internet service.

Your obsession for obfuscating and re-directing all the time seems more like an escape, rather than as an attempt to protect the content of what you host.

If you really care about what your website hosts, you'd better simplify things instead of complicating them with pseudo-urls and pseudo-keys. Otherwise even legitimate copyrighters will find it extremely difficult to report possible violations because they won't be able to trace the real source of your hosted streams.

P.S.: being too arrogant and sadist with rtmp dumpers does not help, because the people who want to view a free stream on VLC can be your potential clients too.

I hope you'll be seriously thinking about that, because your way of behaving is the worst promotion you can offer for your service.
First of all, you seem to be a good guy with good intentions, but as you know, most of the people just want to rip the streams off, and believe me when I say they suck all my bandwidth, first time i changed the token on first day i saw a decrease of 100 viewers per server, that means about 1200 viewers leeching the servers without any permission to do that and without generating any income of that traffic, if someone asked me directly by email or skype for access to the streams I would provide them access depending on the owner permission of the stream. Now they just want to steal them... I need to do something about that right?

Im not a bad person, trust me, and believe im very very professional in what I do, and those messages in the source code of the player, well, if they don't want to see them, just keep the eyes way of it.

drbmn 08-25-2015 05:16 AM

Re: Secure token issue


 
Quote:
Originally Posted by mybeststream (Post 79250)
First of all, you seem to be a good guy with good intentions, but as you know, most of the people just want to rip the streams off, and believe me when I say they suck all my bandwidth, first time i changed the token on first day i saw a decrease of 100 viewers per server, that means about 1200 viewers leeching the servers without any permission to do that and without generating any income of that traffic, if someone asked me directly by email or skype for access to the streams I would provide them access depending on the owner permission of the stream. Now they just want to steal them... I need to do something about that right?

Im not a bad person, trust me, and believe im very very professional in what I do, and those messages in the source code of the player, well, if they don't want to see them, just keep the eyes way of it.
I don't wanna steal your bandwidth or whatever but let me say this:

Your streams are a) freely available on the internet b) you CHOOSE to do so with servers you HAVE to pay for.

If people can play them in VLC, they will. i will help with that because that is what is asked of in this thread.

If you want real protection get AES-128 via m3u8. rtmp is not secure unless you are Hulu.

troller12 08-25-2015 08:29 AM

Re: Secure token issue


 
Hi,

Ok I see your channels are working if I disable ASD Blocker. :) One reason why people don't wanna watch your channels on your website is that you use a lot commercial stuff on the player screen itself and the user has to click them away which popups another sites so nobody want this but you do force people to do that if they wanna watch directly on your site.Maybe a little less of that ADS would be better for your site to get also a better reputation.At the end you shouldn't wonder if people don't wanna watch your channels on your site and try to pipe them on home PC player.I am just talking about normal channel watcher only not about any steal / re-streaming etc.

About token...
Code:
https://mybeststream.xyz/key.php?bandwidth=1.7976931348623157E308
s.t.a.r.t.S.t.r.e.a.m, c.r.e.a.t.e.S.t.r.e.a.m
greetz


All times are GMT -6. The time now is 09:51 AM.
Page 3 of 4 < 12 3 4 >
Show 40 post(s) from this thread on one page