Dominick Accattato’s Site

Community:

Since the RTMP specification’s release, we feel it is necessary to branch out in regards to “securing content”.  This is mentioned on the RTMP specification page here (http://www.adobe.com/devnet/rtmp/) “developers will be free to use their own technological measures to secure content”.  However, due to the spec’s ambiguous restrictions, I am asking any developers who wish to work on such protocols to not download and or read the specification.

That said, has anyone here heard of Blue5? (http://blue5.googlecode.com)

Now you have :).  It’s been quite a while since discussions of rtmpe and rtmfp have come up on the list.  During that time, these protocols have entered the public arena through several third parties.  Now, for the first time, these are being actively developed as a bridge between Red5 and the use of these encryption protocols.

That said, we need some support from the community.  These protocols and others should be standardized and we’re looking for valid arguments on why they should be.  In fact, opening these protocols and building security stacks on top of these should be the goal of both media servers and the Flash Player.

Here is my first argument for the cause:

RTMPS can be used but it incurrs the overhead of typical encyrpted http
traffic.  That’s why RTMPE is so important because it is encrypted at the
RTMP level and doesn’t incur the cost of http traffic overhead.

A much better solution would require the following.

1. The client authenticates with a server
2. The server generates a public/private key based on a valid session and
associates it with the client
3. The server sends down a private key through ssl based on a valid
logiin
4. The client uses this private key to connect to the server
5. The server validates the key
6. The server starts streaming using the public key’s encryption which
can only be decrypted by the private key

I first mentioned this on the FMS mailing list in hopes to reach out to Adobe and work on a spec for this type of functionality.  Hopefully with community support and open letters and standards, we may be able to extend the security stack.

Comments, thoughts, suggestions?

Tags: Uncategorized // Add Comment »

see ya there my fellow Red5 devs

www.flashontap.com

Tags: Uncategorized // 3 Comments »

You can find out by checking out his profile on the Flash on Tap site.

Then you got Gmunk’s favorite beer too which is Downtown Brown which sounds a little sketchy.

Anyways, there’s a whole list of others… For god sake there’s gonna be like 40 beers on tap!

Tags: Uncategorized // Add Comment »

Wow, I can’t believe it’s almost here!  I can already smell the IPA’s coming into town from all over.  Boston is going to light up.  By the way, the swag is looking really cool, but I bet you’ve already guessed that with such a cool name like “Flash on Tap” how could we go wrong ;).  Also we just released the 50 Free Tickets campaign for anyone who was recently laid off.  It’s a really good idea and I think it goes a long way at showing how this conference really is about the community.  By the way, John has changed his workshop a bit to really add some cool new technologies that he works with on a day to day basis.  Check out his blog postings on Flash on tap: http://rockonflash.wordpress.com/

Also,  Keith just posted about his workshop: http://www.bit-101.com/blog/?p=2091

Tags: Uncategorized // Add Comment »

Pretty cool, huh?

http://goosh.org/

Tags: Uncategorized // Add Comment »

My typical day requires quite a lot of terminal activity.   This includes setting up Red5 on ubuntu all the way to deployments, configurations, and firewall management.  As a lead developer you’ll often be tasked with the responsibility of packaging and deployments.  In addition, you’ll often deal with services on a remote machine that cannot and should not be reachable outside the corporate firewall.  In those cases, a good option is to open up port forwarding.  This can easily enough be accomplished from the command line, but I just tripped upon a utility that some may find less intimidating than a black screen with text ;).  So fo the faint of heart, here ya go!

 You can set two options with iSSH; which ports to forward to the remote computer, or, to start an SSH SOCKS proxy. The first could be used to forward a VNC connection over SSH and the latter could be used to bypass your work’s website filters! Either way, iSSH offers a simple way to start a SSH connection for those who don’t know how to use the Terminal or just don’t need it

download:  http://www.apple.com/downloads/macosx/unix_open_source/issh.html

Tags: Uncategorized // Add Comment »

Was just searching for a good reference on the virtual machine options and found the following link:

http://developer.apple.com/documentation/Java/Reference/Java_VMOptionsRef/Articles/JavaVirtualMachineOptions.html#//apple_ref/doc/uid/TP40001974

That may help you as you try to understand the following line located in red5-highperf.sh

# Previous option set
export JAVA_OPTS=”-Xrs -Xms512M -Xmx1024M -Xss128K -XX:NewSize=256m -XX:SurvivorRatio=16 -XX:MinHeapFreeRatio=20 -XX:+AggressiveHeap -XX:+ExplicitGCInvokesConcurrent -XX:+UseConcMarkSweepGC -Dsun.rmi.dgc.client.gcInterval=990000 -Dsun.rmi.dgc.server.gcInterval=990000 -Djava.net.preferIPv4Stack=true -Xverify:none”

Tags: Uncategorized // Add Comment »

Check it out!!!!

Tags: Uncategorized // Add Comment »

Art just posted on the xuggle list about a demo they’ve placed online.  On a side note, we use xuggle here at Infrared5!

Per Art’s email:

If you’re bored:
http://xuggle.com/xuggler/demos/piper.jsp

We’ll leave it up and running through May 7th.  Sorry, source code is not available, but it doesn’t do anything that can’t be done with Red5 0.8.RC2, Xuggler 2.0 and some Java chops.

- Art

Tags: Uncategorized // Add Comment »

flashontap early bird ends 2d 12h 28m http://flashontap.eventbrit…

Tags: Uncategorized // Add Comment »