RE: [flexcoders] Need help with protecting FLVs

[Rick Bullotta]

Given that Flex is targeted at OEM’s, however, it may be very desirable to offer some type of key-based encryption/decryption so that OEM’s/ISV’s can protect their intellectual property. Rick Bullotta CTO Lighthammer Software www.lighthammer.com From: flexcoders@yahoogroups.com [mailto:[EMAIL PROTECTED] On Behalf Of Abdul Qabiz Sent: Tuesday, June 07, 2005 8:57 AM To: flexcoders@yahoogroups.com Subject: RE: [flexcoders] Need help with protecting FLVs   Or use Flash Communication Server to achieve true streaming and the best security... -abdul -----Original Message----- From: flexcoders@yahoogroups.com [mailto:[EMAIL PROTECTED] On Behalf Of Alistair McLeod Sent: Tuesday, June 07, 2005 2:45 PM To: flexcoders@yahoogroups.com Subject: RE: [flexcoders] Need help with protecting FLVs Hi Jeff, You'll probably have to stick the FLV somewhere protected on the server (outwith the webapp context, or under WEB-INF, for example) and write a servlet to serve them, remembering to set the mime type. Of course, people could still use the servlet to retrieve the FLV, but its less of a risk (security through obscurity). If this is a problem, you could create some sort of session token, created by the server and passed back to the client, which must then be passed to the servlet to validate. Cheers, Ali -- Alistair McLeod Development Director iteration::two [EMAIL PROTECTED] Office:  +44 (0)131 338 6108 This e-mail and any associated attachments transmitted with it may contain confidential information and must not be copied, or disclosed, or used by anyone other than the intended recipient(s). If you are not the intended recipient(s) please destroy this e-mail, and any copies of it, immediately. Please also note that while software systems have been used to try to ensure that this e-mail has been swept for viruses, iteration::two do not accept responsibility for any damage or loss caused in respect of any viruses transmitted by the e-mail. Please ensure your own checks are carried out before any attachments are opened. -----Original Message----- From: flexcoders@yahoogroups.com [mailto:[EMAIL PROTECTED] On Behalf Of Jeff Steiner Sent: 07 June 2005 07:04 To: flexcoders@yahoogroups.com Subject: [flexcoders] Need help with protecting FLVs Nutshell:  I am working with a handful of FLVs for a tech demo that I am creating and want to prevent them from being downloaded.  Does anyone have a good idea about how I can go about doing this? Longer version: I have encoded FLVs sitting in a web directory (because contentPath requires a location string), but that also means that a user can type in the name of the file and download the FLV directly (I get the download box when I type out the name of the FLV).  I tried putting the files on a web server inside the firewall, thinking that the Flex server would somehow magically act as a proxy just for the Flex application. Worked fine as long as I was sitting inside the firewall.... ;) Any ideas would be great! Thanks, Jeff http://www.flexauthority.com Yahoo! Groups Links Yahoo! Groups Links Yahoo! Groups Links To visit your group on the web, go to: http://groups.yahoo.com/group/flexcoders/   To unsubscribe from this group, send an email to: [EMAIL PROTECTED]   Your use of Yahoo! Groups is subject to the Yahoo! Terms of Service.