Home of the Squeezebox™ & Transporter® network music players.
Page 1 of 6 123 ... LastLast
Results 1 to 10 of 55
  1. #1
    Junior Member
    Join Date
    Jan 2017
    Posts
    27

    Slimserver (LMS for picorePlayer) author - ask for contact

    Hello everyone.
    I am looking for email (or other contact) of slimserver (picoreplayer LMS) author. I have technical question for Him.
    Thanks a lot.
    /Baxoza

    Ps.
    I didn't find it in any licence/info files in picorePleyer distribution.

  2. #2
    Babelfish's Best Boy mherger's Avatar
    Join Date
    Apr 2005
    Location
    Switzerland
    Posts
    20,004

    Slimserver (LMS for picorePlayer)author - ask for contact

    What exact aspect do you need information for? You might want to just ask here.

    > Am 24.02.2018 um 16:53 schrieb baxoza <baxoza.8d7ejz (AT) no-mx (DOT) forums.slimdevices.com>:
    >
    >
    > Hello everyone.
    > I am looking for email (or other contact) of slimserver (picoreplayer
    > LMS) author. I have technical question for Him.
    > Thanks a lot.
    > /Baxoza
    >
    > Ps.
    > I didn't find it in any licence/info files in picorePleyer distribution.
    >
    >
    > ------------------------------------------------------------------------
    > baxoza's Profile: http://forums.slimdevices.com/member.php?userid=66500
    > View this thread: http://forums.slimdevices.com/showthread.php?t=108752
    >
    >

  3. #3
    Senior Member paul-'s Avatar
    Join Date
    Jan 2013
    Posts
    1,198
    Quote Originally Posted by baxoza View Post
    Hello everyone.
    I am looking for email (or other contact) of slimserver (picoreplayer LMS) author. I have technical question for Him.
    Thanks a lot.
    /Baxoza

    Ps.
    I didn't find it in any licence/info files in picorePleyer distribution.
    Licensing for packages is included in the info file.
    http://picoreplayer.sourceforge.net/...erver.tcz.info

    The license is also distributed in the tcz. /usr/local/slimserver/License.txt

    I create the package directly from the git source at https://github.com/Logitech/slimserver


    PS. And Michael is by far the technical guru of LMS

  4. #4
    Junior Member
    Join Date
    Jan 2017
    Posts
    27
    Quote Originally Posted by mherger View Post
    What exact aspect do you need information for? You might want to just ask here.

    > Am 24.02.2018 um 16:53 schrieb baxoza <baxoza.8d7ejz (AT) no-mx (DOT) forums.slimdevices.com>:
    >
    >
    > Hello everyone.
    > I am looking for email (or other contact) of slimserver (picoreplayer
    > LMS) author. I have technical question for Him.
    > Thanks a lot.
    > /Baxoza
    >
    > Ps.
    > I didn't find it in any licence/info files in picorePleyer distribution.
    >
    >
    > ------------------------------------------------------------------------
    > baxoza's Profile: http://forums.slimdevices.com/member.php?userid=66500
    > View this thread: http://forums.slimdevices.com/showthread.php?t=108752
    >
    >
    Thank You mherger for answer.
    I have a question: Is possible to add to LMS a Secure protocol for http and CLI commands? I'd like to control LMS via https.
    For example, lunch additionaly: https://xxx:9443 ? and secured CLI commands f.e. on 9490 port .
    Greetings
    /Baxoza

  5. #5
    Babelfish's Best Boy mherger's Avatar
    Join Date
    Apr 2005
    Location
    Switzerland
    Posts
    20,004
    Quote Originally Posted by baxoza View Post
    Is possible to add to LMS a Secure protocol for http and CLI commands?
    No, not without additional software (eg. revers proxying through nginx/apache or the like).

    And then I just have to add my standard warning: don't open up your LMS to the internet. I wouldn't even do so using a password. It's just not designed to be used in a hostile environment.
    Michael

    http://www.herger.net/slim-plugins - Spotty, MusicArtistInfo

  6. #6
    Junior Member
    Join Date
    Jan 2017
    Posts
    27
    Quote Originally Posted by mherger View Post
    No, not without additional software (eg. revers proxying through nginx/apache or the like).

    And then I just have to add my standard warning: don't open up your LMS to the internet. I wouldn't even do so using a password. It's just not designed to be used in a hostile environment.
    What a pity
    My IT Specialists has internal policy: Every trefic should be secure.
    I intent to control LMS from PC. Becouse RPI is connected to the internet it makes ability to hack the Windows over not secured connection - port 9000 opened etc.
    RPI and PC are behind firewall but RPI (CLI and http protocol) is potentially weak link in this net chain.

    Can You suggest me how to solve it ? What should I install on piCorePlayer ?
    Thanks a lot !
    /Baxoza

  7. #7
    Babelfish's Best Boy mherger's Avatar
    Join Date
    Apr 2005
    Location
    Switzerland
    Posts
    20,004
    It's not clear to me how you're using your LMS. I would support the idea of encrypting traffic on public networks. But is this a requirement for your LAN? The Pi does access the internet, yes. But it's not accessible from the internet if configured correctly. You're saying that it was behind a firewall. Then nobody should be able to access it from the internet.

    Maybe you want to describe what you're trying to do: where your LMS is living, who should have access to it etc.
    Michael

    http://www.herger.net/slim-plugins - Spotty, MusicArtistInfo

  8. #8
    Quote Originally Posted by baxoza View Post
    What a pity
    My IT Specialists has internal policy: Every trefic should be secure.
    I intent to control LMS from PC. Becouse RPI is connected to the internet it makes ability to hack the Windows over not secured connection - port 9000 opened etc.
    RPI and PC are behind firewall but RPI (CLI and http protocol) is potentially weak link in this net chain.

    Can You suggest me how to solve it ? What should I install on piCorePlayer ?
    Look at stunnel. You might be able to run it on the LMS server to make HTTP and CLI network services available via TLS-secured ports, and then on the picoreplayer so that the LMS client thinks it's connecting to LMS running locally without TLS security.

    If the LMS client only uses the tcp/9000 HTTP service (sorry, it's been a long time since I've messed with LMS infrastructure details) then Apache or nginx might work on the LMS server side, as mherger suggested,. But since the Squeezebox client expects to make simple, unencrypted TCP connections, you'll need something like an stunnel "client = yes" daemon on the LMS client device to allow it to connect over the LAN to the TLS-secured ports.

    Client: [Squeezebox client emulator --(plain TCP)--> local stunnel in client mode] --(TCP+TLS on LAN, encrypted+authenticated)--> Server:[stunnel in server mode --(plain TCP)--> LMS]

    The details might be very outdated, but I'm imagining something like the MySQL setup described in section 5 of https://linuxgazette.net/107/odonovan.html
    owner of the stuff that used to reside at http://www.tux.org/~peterw/
    Note: The best way to reach me is email or PM, as I don't spend time on the forums.
    Free plugins: AllQuiet Auto Dim/AutoDisplay BlankSaver ContextMenu DenonSerial
    FuzzyTime KidsPlay KitchenTimer PlayLog PowerCenter/BottleRocket SaverSwitcher
    SettingsManager SleepFade StatusFirst SyncOptions VolumeLock

  9. #9
    Junior Member
    Join Date
    Jan 2017
    Posts
    27
    Quote Originally Posted by mherger View Post
    It's not clear to me how you're using your LMS. I would support the idea of encrypting traffic on public networks. But is this a requirement for your LAN? The Pi does access the internet, yes. But it's not accessible from the internet if configured correctly. You're saying that it was behind a firewall. Then nobody should be able to access it from the internet.

    Maybe you want to describe what you're trying to do: where your LMS is living, who should have access to it etc.
    Thank You for answer.
    Yes - You are right ! So I told to specialists that the security firewall should be enough but security policy is required so that there is no unencrypted traffic.... so they too are right.
    Please tell me - is really unnecessary/impossible to add this feature (at least https protocol) to LMS (slimserwer) for piCoreplayer in the near future ?
    Even the policy of Apple Store from last year requires that all sent applications to their store should communicate over SSL -> "Developers will have to start supporting HTTPS by getting an SSL certificate for their server infrastructure. " from https://www.thesslstore.com/blog/app...-use-ats-2017/
    Maybe this is the reason that there is only one application iPeng (issued before the introduction of this rule) to control LMS on iOS devices. It will allow new applications to appear...

  10. #10
    Junior Member
    Join Date
    Jan 2017
    Posts
    27
    Quote Originally Posted by peterw View Post
    Look at stunnel. You might be able to run it on the LMS server to make HTTP and CLI network services available via TLS-secured ports, and then on the picoreplayer so that the LMS client thinks it's connecting to LMS running locally without TLS security.

    If the LMS client only uses the tcp/9000 HTTP service (sorry, it's been a long time since I've messed with LMS infrastructure details) then Apache or nginx might work on the LMS server side, as mherger suggested,. But since the Squeezebox client expects to make simple, unencrypted TCP connections, you'll need something like an stunnel "client = yes" daemon on the LMS client device to allow it to connect over the LAN to the TLS-secured ports.

    Client: [Squeezebox client emulator --(plain TCP)--> local stunnel in client mode] --(TCP+TLS on LAN, encrypted+authenticated)--> Server:[stunnel in server mode --(plain TCP)--> LMS]

    The details might be very outdated, but I'm imagining something like the MySQL setup described in section 5 of https://linuxgazette.net/107/odonovan.html
    Thanks for good suggestions - I will try it ! Probably I will need Your further suggestion. I will let You know - be pation

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •