Re: [slim] 500 SSL negotiation failed: (Rhapsody Error)
The response to POODLE vuln is generally dropping support for SSLv3 on servers and clients. It's 15 years old and has been recommended to be deprecated for a while now. So, anywhere in the squeezebox / LMS / Plugin code that uses SSL... it needs to be configured or set to be able to support TLS 1.0, 1.1, or 1.2, and any use of SSLv2 or SSLv3 should be removed. My guess is that there is a config option that needs to be changed in something like: IO::Socket::SSL http://search.cpan.org/~sullr/IO-Socket-SSL-2.000/lib/IO/Socket/SSL.pod#Common_Problems_with_SSL Thanks for a good summary :-). Pretty much what I tried over the past days. Unfortunately I still haven't figured it out. 'TLSv12'. Support for 'TLSv1_1' and 'TLSv1_2' requires recent versions of Net::SSLeay and openssl. That's most likely what I have to investigate next. Make sure we run the latest of everything. -- Michael ___ discuss mailing list discuss@lists.slimdevices.com http://lists.slimdevices.com/mailman/listinfo/discuss
Re: [slim] 500 SSL negotiation failed: (Rhapsody Error)
rcampbel3 wrote: > The response to POODLE vuln is generally dropping support for SSLv3 on > servers and clients. It's 15 years old and has been recommended to be > deprecated for a while now. So, anywhere in the squeezebox / LMS / > Plugin code that uses SSL... it needs to be configured or set to be able > to support TLS 1.0, 1.1, or 1.2, and any use of SSLv2 or SSLv3 should be > removed. My guess is that there is a config option that needs to be > changed in something like: > IO::Socket::SSL > http://search.cpan.org/~sullr/IO-Socket-SSL-2.000/lib/IO/Socket/SSL.pod#Common_Problems_with_SSL > -*SSL_version* > Sets the version of the SSL protocol used to transmit data. 'SSLv23' > uses a handshake compatible with SSL2.0, SSL3.0 and TLS1.x, while > 'SSLv2', 'SSLv3', 'TLSv1', 'TLSv1_1' or 'TLSv1_2' restrict handshake and > protocol to the specified version. All values are case-insensitive. > Instead of 'TLSv1_1' and 'TLSv1_2' one can also use 'TLSv11' and > 'TLSv12'. Support for 'TLSv1_1' and 'TLSv1_2' requires recent versions > of Net::SSLeay and openssl. > > Independent from the handshake format you can limit to set of accepted > SSL versions by adding !version separated by ':'. > > The default SSL_version is 'SSLv23:!SSLv3:!SSLv2' which means, that the > handshake format is compatible to SSL2.0 and higher, but that the > successful handshake is limited to TLS1.0 and higher, that is no SSL2.0 > or SSL3.0 because both of these versions have serious security issues > and should not be used anymore. You can also use !TLSv1_1 and !TLSv1_2 > to disable TLS versions 1.1 and 1.2 while still allowing TLS version > 1.0. > > Setting the version instead to 'TLSv1' might break interaction with > older clients, which need and SSL2.0 compatible handshake. On the other > side some clients just close the connection when they receive a TLS > version 1.1 request. In this case setting the version to > 'SSLv23:!SSLv2:!SSLv3:!TLSv1_1:!TLSv1_2' might help. > - > > or Net::SSLeay > http://search.cpan.org/~mikem/Net-SSLeay-1.66/lib/Net/SSLeay.pod > Replace any SSLv2 or SSLv3 functions with TLSv1 equivalents. > Take note of security recommendations here: > http://search.cpan.org/~mikem/Net-SSLeay-1.66/lib/Net/SSLeay.pod#SECURITY > > -Ross A wild guess is that the snag will be in the players themself like 3 years ago . Some services demands that the security is taking place inside the player . https://github.com/Logitech/slimserver/tree/public/7.9/Firmware Main hifi: Touch + CIA PS +MeridianG68J MeridianHD621 MeridianG98DH 2 x MeridianDSP5200 MeridianDSP5200HC 2 xMeridianDSP3100 +Rel Stadium 3 sub. Bedroom/Office: Boom Kitchen: Touch + powered Fostex PM0.4 Misc use: Radio (with battery) iPad1 with iPengHD & SqueezePad (in storage SB3, reciever ,controller ) server HP proliant micro server N36L with ClearOS Linux http://people.xiph.org/~xiphmont/demo/neil-young.html Mnyb's Profile: http://forums.slimdevices.com/member.php?userid=4143 View this thread: http://forums.slimdevices.com/showthread.php?t=102304 ___ discuss mailing list discuss@lists.slimdevices.com http://lists.slimdevices.com/mailman/listinfo/discuss
Re: [slim] Call for testers! Daphile
pufnstuf wrote: > Greetings fellow Daphile users > Does anyone know how to change the resolution for jivelite (called the > "player control application") in Daphile 14.09? > Looking at the source for jivelite, it supports 4 fixed modes: 1080p, 720p, 1280x1024 and 640x680. It appears there's no intelligent scaling or anything, so to make a 1920x1200 mode you'd have to dive into the source code and make your own profile with dimensions for 1920x1200, and possibly adjust some of the graphics as well. Not an easy thing to do without programming skills... TheGroove's Profile: http://forums.slimdevices.com/member.php?userid=63453 View this thread: http://forums.slimdevices.com/showthread.php?t=99132 ___ discuss mailing list discuss@lists.slimdevices.com http://lists.slimdevices.com/mailman/listinfo/discuss
Re: [slim] Edit running playlist
Yes I have tried. The problem is that managing a big playlist with drag and drop is not very user friendly. Also it is very easy to make a mistake while making the playlist and just erase it by playing a music instead of adding it to the playlist. SaintGermain's Profile: http://forums.slimdevices.com/member.php?userid=42358 View this thread: http://forums.slimdevices.com/showthread.php?t=102327 ___ discuss mailing list discuss@lists.slimdevices.com http://lists.slimdevices.com/mailman/listinfo/discuss
Re: [slim] 500 SSL negotiation failed: (Rhapsody Error)
mherger wrote: > Ok, got some more information. And it's a little more complicated than I > > though. There's a critical vulnerability in the SSL v3 protocol > ("Poodle" - > https://blogs.akamai.com/2014/10/excerpt-how-poodle-happened.html). > Therefore Rhapsody's CDN changed their configuration, which causes the > failure. I'll have to see how we can work around this limitation. > > -- > > Michael The response to POODLE vuln is generally dropping support for SSLv3 on servers and clients. It's 15 years old and has been recommended to be deprecated for a while now. So, anywhere in the squeezebox / LMS / Plugin code that uses SSL... it needs to be configured or set to be able to support TLS 1.0, 1.1, or 1.2, and any use of SSLv2 or SSLv3 should be removed. My guess is that there is a config option that needs to be changed in something like: IO::Socket::SSL http://search.cpan.org/~sullr/IO-Socket-SSL-2.000/lib/IO/Socket/SSL.pod#Common_Problems_with_SSL -*SSL_version* Sets the version of the SSL protocol used to transmit data. 'SSLv23' uses a handshake compatible with SSL2.0, SSL3.0 and TLS1.x, while 'SSLv2', 'SSLv3', 'TLSv1', 'TLSv1_1' or 'TLSv1_2' restrict handshake and protocol to the specified version. All values are case-insensitive. Instead of 'TLSv1_1' and 'TLSv1_2' one can also use 'TLSv11' and 'TLSv12'. Support for 'TLSv1_1' and 'TLSv1_2' requires recent versions of Net::SSLeay and openssl. Independent from the handshake format you can limit to set of accepted SSL versions by adding !version separated by ':'. The default SSL_version is 'SSLv23:!SSLv3:!SSLv2' which means, that the handshake format is compatible to SSL2.0 and higher, but that the successful handshake is limited to TLS1.0 and higher, that is no SSL2.0 or SSL3.0 because both of these versions have serious security issues and should not be used anymore. You can also use !TLSv1_1 and !TLSv1_2 to disable TLS versions 1.1 and 1.2 while still allowing TLS version 1.0. Setting the version instead to 'TLSv1' might break interaction with older clients, which need and SSL2.0 compatible handshake. On the other side some clients just close the connection when they receive a TLS version 1.1 request. In this case setting the version to 'SSLv23:!SSLv2:!SSLv3:!TLSv1_1:!TLSv1_2' might help. - or Net::SSLeay http://search.cpan.org/~mikem/Net-SSLeay-1.66/lib/Net/SSLeay.pod Replace any SSLv2 or SSLv3 functions with TLSv1 equivalents. Take note of security recommendations here: http://search.cpan.org/~mikem/Net-SSLeay-1.66/lib/Net/SSLeay.pod#SECURITY -Ross rcampbel3's Profile: http://forums.slimdevices.com/member.php?userid=38284 View this thread: http://forums.slimdevices.com/showthread.php?t=102304 ___ discuss mailing list discuss@lists.slimdevices.com http://lists.slimdevices.com/mailman/listinfo/discuss
Re: [slim] Edit running playlist
Have you tried "drag and drop" actions using the Web interface? As I recall, that works reasonably well for re-arranging tracks, adding tracks, etc. tcutting's Profile: http://forums.slimdevices.com/member.php?userid=17402 View this thread: http://forums.slimdevices.com/showthread.php?t=102327 ___ discuss mailing list discuss@lists.slimdevices.com http://lists.slimdevices.com/mailman/listinfo/discuss
[slim] Problem with new Podcast: Serial
Hi all. I'm trying to add the URL for the new "This American Life" spinoff podcast called "Serial". I can add the URL to my podcast list, and it shows up in podcast list in LMS and even allows me to pick one of four episodes. But it won't play in my squeezeboxes (shows up in active playlist, and shows movement for about 3 seconds then reverts back to 0 on the counter with never any audio). The URL is: http://feeds.serialpodcast.org/serialpodcast I can play it from the web, etc., but just not from the squeezeboxes using LMS or mysb.com. Can anyone else get this to work? If not, is there something odd about it. Seems to be an mp3 podcast as far as I can tell. http://serialpodcast.org/ Any thoughts? (p.s. I know I can download the mp3 files, but I prefer to simply stream them via podcast app as I do with many other podcasts, including "This American Life". ) *Location 1:* VortexBox 4TB (2.3) > LMS 7.8 > Transporter, Touch, Boom, Radio w/Battery (all ethernet except Radio) *Location 2:* VBA 3TB (2.3) > LMS 7.8 > Touch > Benchmark DAC I, Boom, Radio w/Battery (all ethernet except Radio) *Office:* Win7(64) > LMS 7.8 > Squeezelite *Spares:* several Touch, Radio, SB3 *Controllers:* iPhone4S & iPad2 (iPeng7 & Squeezepad), CONTROLLER, or SqueezePlay 7.8 on Win7(64) laptop *Files:* ripping: dbpoweramp > FLAC; post-rip: mp3tag, PerfectTunes; Streaming: Spotify garym's Profile: http://forums.slimdevices.com/member.php?userid=17325 View this thread: http://forums.slimdevices.com/showthread.php?t=102329 ___ discuss mailing list discuss@lists.slimdevices.com http://lists.slimdevices.com/mailman/listinfo/discuss
[slim] Edit running playlist
I own a Touch and a Radio with LMS running on a dedicated computer. However creating and editing playlists are still quite painful (using the Touch or using the web interface). I'm also not very fond of using phone or tablet to do that. Is there any other way to control the running playlist (add/remove some tracks, re-arrange tracks) with a rich client running on a desktop computer (preferably linux) ? A dream would be to use Amarok or Clementine to organize tracks in the playlist... If you have any trick to edit the running playlist, I'm all ears... Thanks SaintGermain's Profile: http://forums.slimdevices.com/member.php?userid=42358 View this thread: http://forums.slimdevices.com/showthread.php?t=102327 ___ discuss mailing list discuss@lists.slimdevices.com http://lists.slimdevices.com/mailman/listinfo/discuss
Re: [slim] 500 SSL negotiation failed: (Rhapsody Error)
Me to, Napster UK account Chatts's Profile: http://forums.slimdevices.com/member.php?userid=63451 View this thread: http://forums.slimdevices.com/showthread.php?t=102304 ___ discuss mailing list discuss@lists.slimdevices.com http://lists.slimdevices.com/mailman/listinfo/discuss
[slim] Filenames too long - Batch Tool available?
I have ssen that some names of my Flac's are too long - especially after being in different folders. I have no idea which ones are too long, is there a tool to search and change these problem files? I guess LMS also skips these tracks, or does it play them? LMS 7.9.0 on Wandboard (SoA) Synology DS-410j NAS Squeezebox Touch, Squeezebox Boom, Squeezebox Radio Schiit - BIFROST Dac MOG, Spotify Premium iPhone: iPeng - iPad: Squeezepad, iPengHD Squeezemenicely's Profile: http://forums.slimdevices.com/member.php?userid=41812 View this thread: http://forums.slimdevices.com/showthread.php?t=102326 ___ discuss mailing list discuss@lists.slimdevices.com http://lists.slimdevices.com/mailman/listinfo/discuss
Re: [slim] 500 SSL negotiation failed: (Rhapsody Error)
I use Napster in the UK. I've got the same problem. Hope someone can get it resolved. MikeyE's Profile: http://forums.slimdevices.com/member.php?userid=63450 View this thread: http://forums.slimdevices.com/showthread.php?t=102304 ___ discuss mailing list discuss@lists.slimdevices.com http://lists.slimdevices.com/mailman/listinfo/discuss
Re: [slim] 500 SSL negotiation failed: (Rhapsody Error)
Thanks Michael - appreciate you looking into and trying to find a resolution to this. And thanks to everyone providing more info into the thread. I have Napster in the UK btw. Will check back in soon. LeatherOsprey's Profile: http://forums.slimdevices.com/member.php?userid=54374 View this thread: http://forums.slimdevices.com/showthread.php?t=102304 ___ discuss mailing list discuss@lists.slimdevices.com http://lists.slimdevices.com/mailman/listinfo/discuss