[MPlayer-users] md5 checking
alvin.mpeg at ns.linux-1u.net
alvin.mpeg at ns.linux-1u.net
Tue Apr 13 21:35:33 CEST 2004
hi ya caedes
>
> what about just putting the authorized movies onto the "public/shared
> mpeg player" and give no access to internet/lan (or restrict
> downloadfilesize) and no access to cdrom/dvd-drive?
unfortunately... the way the specs is, the movie player
downloads the movies from a remote corp master server and
plays it locally for public viewing
the playlist changes every day :-)
> if the "scriptkiddie" is able to modify the playlist,
> it'll also be able to alter the md5s i guess
yes .. but they'd have to figure out where the player
is getting its md5's from
- and once a script kiddie or others do get
into the box, all bets are off .. they can do
anything they want as long as they know
why they got into the box in the first place
- but we should be able to prevent automated
scripts from making a mess
and besdies, if the script kiddie got into the box,
they can just as easily upload their own mplayer binary
even if ours is modified to minize the risk
just more things for (us/me) to worry about ...
c ya
alvin
More information about the MPlayer-users
mailing list