Re: [slim] 500 SSL negotiation failed: (Rhapsody Error)

2014-10-20 Thread Michael Herger 

The  response to POODLE vuln is generally dropping support for SSLv3 on
servers and clients. It's 15 years old and has been recommended to be
deprecated for a while now. So, anywhere in the squeezebox / LMS /
Plugin code that uses SSL... it needs to be configured or set to be able
to support TLS 1.0, 1.1, or 1.2, and any use of SSLv2 or SSLv3 should be
removed. My guess is that there is a config option that needs to be
changed in something like:
IO::Socket::SSL
http://search.cpan.org/~sullr/IO-Socket-SSL-2.000/lib/IO/Socket/SSL.pod#Common_Problems_with_SSL


Thanks for a good summary :-). Pretty much what I tried over the past 
days. Unfortunately I still haven't figured it out.



'TLSv12'. Support for 'TLSv1_1' and 'TLSv1_2' requires recent versions
of Net::SSLeay and openssl.


That's most likely what I have to investigate next. Make sure we run the 
latest of everything.


--

Michael
___
discuss mailing list
discuss@lists.slimdevices.com
http://lists.slimdevices.com/mailman/listinfo/discuss

Re: [slim] 500 SSL negotiation failed: (Rhapsody Error)

2014-10-20 Thread Mnyb 

rcampbel3 wrote: 
> The  response to POODLE vuln is generally dropping support for SSLv3 on
> servers and clients. It's 15 years old and has been recommended to be
> deprecated for a while now. So, anywhere in the squeezebox / LMS /
> Plugin code that uses SSL... it needs to be configured or set to be able
> to support TLS 1.0, 1.1, or 1.2, and any use of SSLv2 or SSLv3 should be
> removed. My guess is that there is a config option that needs to be
> changed in something like:
> IO::Socket::SSL
> http://search.cpan.org/~sullr/IO-Socket-SSL-2.000/lib/IO/Socket/SSL.pod#Common_Problems_with_SSL
> 
-*SSL_version*
> Sets the version of the SSL protocol used to transmit data. 'SSLv23'
> uses a handshake compatible with SSL2.0, SSL3.0 and TLS1.x, while
> 'SSLv2', 'SSLv3', 'TLSv1', 'TLSv1_1' or 'TLSv1_2' restrict handshake and
> protocol to the specified version. All values are case-insensitive.
> Instead of 'TLSv1_1' and 'TLSv1_2' one can also use 'TLSv11' and
> 'TLSv12'. Support for 'TLSv1_1' and 'TLSv1_2' requires recent versions
> of Net::SSLeay and openssl.
> 
> Independent from the handshake format you can limit to set of accepted
> SSL versions by adding !version separated by ':'.
> 
> The default SSL_version is 'SSLv23:!SSLv3:!SSLv2' which means, that the
> handshake format is compatible to SSL2.0 and higher, but that the
> successful handshake is limited to TLS1.0 and higher, that is no SSL2.0
> or SSL3.0 because both of these versions have serious security issues
> and should not be used anymore. You can also use !TLSv1_1 and !TLSv1_2
> to disable TLS versions 1.1 and 1.2 while still allowing TLS version
> 1.0.
> 
> Setting the version instead to 'TLSv1' might break interaction with
> older clients, which need and SSL2.0 compatible handshake. On the other
> side some clients just close the connection when they receive a TLS
> version 1.1 request. In this case setting the version to
> 'SSLv23:!SSLv2:!SSLv3:!TLSv1_1:!TLSv1_2' might help.
> -
> 
> or Net::SSLeay
> http://search.cpan.org/~mikem/Net-SSLeay-1.66/lib/Net/SSLeay.pod
> Replace any SSLv2 or SSLv3 functions with TLSv1 equivalents.
> Take note of security recommendations here:
> http://search.cpan.org/~mikem/Net-SSLeay-1.66/lib/Net/SSLeay.pod#SECURITY
> 
> -Ross

A wild guess is that the snag will be in the players themself like 3
years ago .
Some services demands that the security is taking place inside the
player .
https://github.com/Logitech/slimserver/tree/public/7.9/Firmware




Main hifi: Touch + CIA PS +MeridianG68J MeridianHD621 MeridianG98DH 2 x
MeridianDSP5200 MeridianDSP5200HC 2 xMeridianDSP3100 +Rel Stadium 3
sub.
Bedroom/Office: Boom
Kitchen: Touch + powered Fostex PM0.4
Misc use: Radio (with battery)
iPad1 with iPengHD & SqueezePad
(in storage SB3, reciever ,controller )
server HP proliant micro server N36L with ClearOS Linux

http://people.xiph.org/~xiphmont/demo/neil-young.html

Mnyb's Profile: http://forums.slimdevices.com/member.php?userid=4143
View this thread: http://forums.slimdevices.com/showthread.php?t=102304

___
discuss mailing list
discuss@lists.slimdevices.com
http://lists.slimdevices.com/mailman/listinfo/discuss

Re: [slim] Call for testers! Daphile

2014-10-20 Thread TheGroove 

pufnstuf wrote: 
> Greetings fellow Daphile users
> Does anyone know how to change the resolution for jivelite (called the
> "player control application") in Daphile 14.09?
> 

Looking at the source for jivelite, it supports 4 fixed modes: 1080p,
720p, 1280x1024 and 640x680. It appears there's no intelligent scaling
or anything, so to make a 1920x1200 mode you'd have to dive into the
source code and make your own profile with dimensions for 1920x1200, and
possibly adjust some of the graphics as well. Not an easy thing to do
without programming skills...



TheGroove's Profile: http://forums.slimdevices.com/member.php?userid=63453
View this thread: http://forums.slimdevices.com/showthread.php?t=99132

___
discuss mailing list
discuss@lists.slimdevices.com
http://lists.slimdevices.com/mailman/listinfo/discuss

Re: [slim] Edit running playlist

2014-10-20 Thread SaintGermain 

Yes I have tried.
The problem is that managing a big playlist with drag and drop is not
very user friendly.
Also it is very easy to make a mistake while making the playlist and
just erase it by playing a music instead of adding it to the playlist.



SaintGermain's Profile: http://forums.slimdevices.com/member.php?userid=42358
View this thread: http://forums.slimdevices.com/showthread.php?t=102327

___
discuss mailing list
discuss@lists.slimdevices.com
http://lists.slimdevices.com/mailman/listinfo/discuss

Re: [slim] 500 SSL negotiation failed: (Rhapsody Error)

2014-10-20 Thread rcampbel3 

mherger wrote: 
> Ok, got some more information. And it's a little more complicated than I
> 
> though. There's a critical vulnerability in the SSL v3 protocol 
> ("Poodle" - 
> https://blogs.akamai.com/2014/10/excerpt-how-poodle-happened.html). 
> Therefore Rhapsody's CDN changed their configuration, which causes the 
> failure. I'll have to see how we can work around this limitation.
> 
> -- 
> 
> Michael

The  response to POODLE vuln is generally dropping support for SSLv3 on
servers and clients. It's 15 years old and has been recommended to be
deprecated for a while now. So, anywhere in the squeezebox / LMS /
Plugin code that uses SSL... it needs to be configured or set to be able
to support TLS 1.0, 1.1, or 1.2, and any use of SSLv2 or SSLv3 should be
removed. My guess is that there is a config option that needs to be
changed in something like:
IO::Socket::SSL
http://search.cpan.org/~sullr/IO-Socket-SSL-2.000/lib/IO/Socket/SSL.pod#Common_Problems_with_SSL

-*SSL_version*
Sets the version of the SSL protocol used to transmit data. 'SSLv23'
uses a handshake compatible with SSL2.0, SSL3.0 and TLS1.x, while
'SSLv2', 'SSLv3', 'TLSv1', 'TLSv1_1' or 'TLSv1_2' restrict handshake and
protocol to the specified version. All values are case-insensitive.
Instead of 'TLSv1_1' and 'TLSv1_2' one can also use 'TLSv11' and
'TLSv12'. Support for 'TLSv1_1' and 'TLSv1_2' requires recent versions
of Net::SSLeay and openssl.

Independent from the handshake format you can limit to set of accepted
SSL versions by adding !version separated by ':'.

The default SSL_version is 'SSLv23:!SSLv3:!SSLv2' which means, that the
handshake format is compatible to SSL2.0 and higher, but that the
successful handshake is limited to TLS1.0 and higher, that is no SSL2.0
or SSL3.0 because both of these versions have serious security issues
and should not be used anymore. You can also use !TLSv1_1 and !TLSv1_2
to disable TLS versions 1.1 and 1.2 while still allowing TLS version
1.0.

Setting the version instead to 'TLSv1' might break interaction with
older clients, which need and SSL2.0 compatible handshake. On the other
side some clients just close the connection when they receive a TLS
version 1.1 request. In this case setting the version to
'SSLv23:!SSLv2:!SSLv3:!TLSv1_1:!TLSv1_2' might help.
-


or Net::SSLeay
http://search.cpan.org/~mikem/Net-SSLeay-1.66/lib/Net/SSLeay.pod
Replace any SSLv2 or SSLv3 functions with TLSv1 equivalents.
Take note of security recommendations here:
http://search.cpan.org/~mikem/Net-SSLeay-1.66/lib/Net/SSLeay.pod#SECURITY

-Ross



rcampbel3's Profile: http://forums.slimdevices.com/member.php?userid=38284
View this thread: http://forums.slimdevices.com/showthread.php?t=102304

___
discuss mailing list
discuss@lists.slimdevices.com
http://lists.slimdevices.com/mailman/listinfo/discuss

Re: [slim] Edit running playlist

2014-10-20 Thread tcutting 

Have you tried "drag and drop" actions using the Web interface? As I
recall, that works reasonably well for re-arranging tracks, adding
tracks, etc.



tcutting's Profile: http://forums.slimdevices.com/member.php?userid=17402
View this thread: http://forums.slimdevices.com/showthread.php?t=102327

___
discuss mailing list
discuss@lists.slimdevices.com
http://lists.slimdevices.com/mailman/listinfo/discuss

[slim] Problem with new Podcast: Serial

2014-10-20 Thread garym 

Hi all. I'm trying to add the URL for the new "This American Life"
spinoff podcast called "Serial".   I can add the URL to my podcast list,
and it shows up in podcast list in LMS and even allows me to pick one of
four episodes. But it won't play in my squeezeboxes (shows up in active
playlist, and shows movement for about 3 seconds then reverts back to 0
on the counter with never any audio).   The URL is:

http://feeds.serialpodcast.org/serialpodcast

I can play it from the web, etc., but just not from the squeezeboxes
using LMS or mysb.com.   Can anyone else get this to work? If not, is
there something odd about it. Seems to be an mp3 podcast as far as I can
tell.
http://serialpodcast.org/

Any thoughts?

(p.s. I know I can download the mp3 files, but I prefer to simply stream
them via podcast app as I do with many other podcasts, including "This
American Life". )



*Location 1:* VortexBox 4TB (2.3) > LMS 7.8 > Transporter, Touch, Boom,
Radio w/Battery (all ethernet except Radio)
*Location 2:* VBA 3TB (2.3) > LMS 7.8 > Touch > Benchmark DAC I, Boom,
Radio w/Battery (all ethernet except Radio)
*Office:* Win7(64) > LMS 7.8 > Squeezelite
*Spares:* several Touch, Radio, SB3
*Controllers:* iPhone4S & iPad2 (iPeng7 & Squeezepad), CONTROLLER, or
SqueezePlay 7.8 on Win7(64) laptop
*Files:* ripping: dbpoweramp > FLAC; post-rip: mp3tag, PerfectTunes;
Streaming: Spotify

garym's Profile: http://forums.slimdevices.com/member.php?userid=17325
View this thread: http://forums.slimdevices.com/showthread.php?t=102329

___
discuss mailing list
discuss@lists.slimdevices.com
http://lists.slimdevices.com/mailman/listinfo/discuss

[slim] Edit running playlist

2014-10-20 Thread SaintGermain 

I own a Touch and a Radio with LMS running on a dedicated computer.

However creating and editing playlists are still quite painful (using
the Touch or using the web interface).
I'm also not very fond of using phone or tablet to do that.

Is there any other way to control the running playlist (add/remove some
tracks, re-arrange tracks) with a rich client running on a desktop
computer (preferably linux) ?

A dream would be to use Amarok or Clementine to organize tracks in the
playlist...

If you have any trick to edit the running playlist, I'm all ears...

Thanks



SaintGermain's Profile: http://forums.slimdevices.com/member.php?userid=42358
View this thread: http://forums.slimdevices.com/showthread.php?t=102327

___
discuss mailing list
discuss@lists.slimdevices.com
http://lists.slimdevices.com/mailman/listinfo/discuss

Re: [slim] 500 SSL negotiation failed: (Rhapsody Error)

2014-10-20 Thread Chatts 

Me to, Napster UK account



Chatts's Profile: http://forums.slimdevices.com/member.php?userid=63451
View this thread: http://forums.slimdevices.com/showthread.php?t=102304

___
discuss mailing list
discuss@lists.slimdevices.com
http://lists.slimdevices.com/mailman/listinfo/discuss

[slim] Filenames too long - Batch Tool available?

2014-10-20 Thread Squeezemenicely 

I have ssen that some names of my Flac's are too long - especially after
being in different folders.

I have no idea which ones are too long, is there a tool to search and
change these problem files?


I guess LMS also skips these tracks, or does it play them?



LMS 7.9.0 on Wandboard (SoA)
Synology DS-410j NAS
Squeezebox Touch, Squeezebox Boom, Squeezebox Radio
Schiit - BIFROST Dac
MOG, Spotify Premium
iPhone: iPeng - iPad: Squeezepad, iPengHD

Squeezemenicely's Profile: http://forums.slimdevices.com/member.php?userid=41812
View this thread: http://forums.slimdevices.com/showthread.php?t=102326

___
discuss mailing list
discuss@lists.slimdevices.com
http://lists.slimdevices.com/mailman/listinfo/discuss

Re: [slim] 500 SSL negotiation failed: (Rhapsody Error)

2014-10-20 Thread MikeyE 

I use Napster in the UK. I've got the same problem. Hope someone can get
it resolved.



MikeyE's Profile: http://forums.slimdevices.com/member.php?userid=63450
View this thread: http://forums.slimdevices.com/showthread.php?t=102304

___
discuss mailing list
discuss@lists.slimdevices.com
http://lists.slimdevices.com/mailman/listinfo/discuss

Re: [slim] 500 SSL negotiation failed: (Rhapsody Error)

2014-10-20 Thread LeatherOsprey 

Thanks Michael - appreciate you looking into and trying to find a
resolution to this.
And thanks to everyone providing more info into the thread.

I have Napster in the UK btw.

Will check back in soon.



LeatherOsprey's Profile: http://forums.slimdevices.com/member.php?userid=54374
View this thread: http://forums.slimdevices.com/showthread.php?t=102304

___
discuss mailing list
discuss@lists.slimdevices.com
http://lists.slimdevices.com/mailman/listinfo/discuss