Home of the Squeezebox™ & Transporter® network music players.
Page 2 of 6 FirstFirst 1234 ... LastLast
Results 11 to 20 of 55
  1. #11
    BTW I'm pretty sure Apple effectively dropped that requirement before it was ever enforced. https://cheapsslsecurity.com/blog/ap...time-duration/
    owner of the stuff that used to reside at http://www.tux.org/~peterw/
    Note: The best way to reach me is email or PM, as I don't spend time on the forums.
    Free plugins: AllQuiet Auto Dim/AutoDisplay BlankSaver ContextMenu DenonSerial
    FuzzyTime KidsPlay KitchenTimer PlayLog PowerCenter/BottleRocket SaverSwitcher
    SettingsManager SleepFade StatusFirst SyncOptions VolumeLock

  2. #12
    Babelfish's Best Boy mherger's Avatar
    Join Date
    Apr 2005
    Location
    Switzerland
    Posts
    20,003
    LMS traffic cannot be encrypted because the hardware players don't support https.
    Michael

    http://www.herger.net/slim-plugins - Spotty, MusicArtistInfo

  3. #13
    Junior Member
    Join Date
    Jan 2017
    Posts
    27
    Quote Originally Posted by mherger View Post
    LMS traffic cannot be encrypted because the hardware players don't support https.
    I only asking for this additional feature for piCorePlayer lunched on Raspberry Pi 3 - is this impossible to add this in near future to slimserwer (LMS for piCoreplayer) ?

  4. #14
    Junior Member
    Join Date
    Jan 2017
    Posts
    27
    Quote Originally Posted by baxoza View Post
    I only asking for this additional feature for piCorePlayer lunched on Raspberry Pi 3 - is this impossible to add this in near future to slimserwer (LMS for piCoreplayer) ?
    Michael why are You ignoring me and my question? I am sad

  5. #15
    Babelfish's Best Boy mherger's Avatar
    Join Date
    Apr 2005
    Location
    Switzerland
    Posts
    20,003
    Quote Originally Posted by baxoza View Post
    I only asking for this additional feature for piCorePlayer lunched on Raspberry Pi 3 - is this impossible to add this in near future to slimserwer (LMS for piCoreplayer) ?
    It would need to be implemented in the players, not in LMS. Firmware updates for hardware players you can forget. squeezelite is not my domain.

    And no, I'm not ignoring you. It's just that you're asking for something you've got responses for before. But you're not happy with the response, therefore you keep asking...
    Michael

    http://www.herger.net/slim-plugins - Spotty, MusicArtistInfo

  6. #16
    Junior Member
    Join Date
    Jan 2017
    Posts
    27
    Quote Originally Posted by mherger View Post
    It would need to be implemented in the players, not in LMS. Firmware updates for hardware players you can forget. squeezelite is not my domain.

    And no, I'm not ignoring you. It's just that you're asking for something you've got responses for before. But you're not happy with the response, therefore you keep asking...
    "It would need to be implemented in the players, not in LMS." - really ?
    I think that the LMS is between http-browser (on client machine) and the player(s) - it looks like that:

    Http_client <> LMS(slimserver) <> player(squezelite) .... (Am I right with this topology ?)

    in my case Http_client is on windows machine, the rest is on RPI3.
    LMS says to player what to play/do/etc. according to request from LMS page (on windows) over http <--- and this I wish You to consider about.

  7. #17
    Babelfish's Best Boy mherger's Avatar
    Join Date
    Apr 2005
    Location
    Switzerland
    Posts
    20,003

    Slimserver (LMS for picorePlayer)author - ask for contact

    > Http_client <> LMS(slimserver) <> player(squezelite) .... (Am I right
    > with this topology ?)


    If you're not allowed to have any non-https traffic in your network,
    then the https endpoint must be the player, not LMS. Using LMS to
    terminate https already is implemented.

    I think you're not clear about what your IT guys want from you. And
    they're not clear how an LMS environment works. Because otherwise you'd
    just be happy with what you have already :-).

    --

    Michael

  8. #18
    Junior Member
    Join Date
    Jan 2017
    Posts
    27
    Quote Originally Posted by mherger View Post
    > Http_client <> LMS(slimserver) <> player(squezelite) .... (Am I right
    > with this topology ?)


    If you're not allowed to have any non-https traffic in your network,
    then the https endpoint must be the player, not LMS. Using LMS to
    terminate https already is implemented.

    I think you're not clear about what your IT guys want from you. And
    they're not clear how an LMS environment works. Because otherwise you'd
    just be happy with what you have already :-).

    --

    Michael
    Thanks again for fast answer
    "Using LMS to terminate https already is implemented." Great!!! How to switch LMS to https ???? (Settings>Advanced>Security>CSRF Protection Level <-- is this https ?)

  9. #19
    Babelfish's Best Boy mherger's Avatar
    Join Date
    Apr 2005
    Location
    Switzerland
    Posts
    20,003

    Slimserver (LMS for picorePlayer)author - ask for contact

    > "Using LMS to terminate https already is implemented." Great!!! How to
    > switch LMS to https ???? (Settings>Advanced>Security>CSRF Protection
    > Level <-- is this https ?)


    Oh my... we're running in circles. You don't understand what you're
    asking for, I'm sorry to say.

    Up this thread you said: "My IT Specialists has internal policy: Every
    trefic should be secure."

    To which I responded: "LMS traffic cannot be encrypted because the
    hardware players don't support https."

    Which basically means: you cannot have all traffic secured. You can't.

    But most likely this isn't what your IT specialist wants anyway. I guess
    he doesn't want any access from the outside in a non-encrypted way. And
    that's where I said: don't open your LMS to the internet. Or tell us
    more about your setup.

    And here's where I'm stopping. We need more information about your
    setup. Your use case. The problem your IT guy is seeing. Maybe he can
    chime in here?

    --

    Michael

  10. #20
    Junior Member
    Join Date
    Jan 2017
    Posts
    27
    Quote Originally Posted by mherger View Post
    > "Using LMS to terminate https already is implemented." Great!!! How to
    > switch LMS to https ???? (Settings>Advanced>Security>CSRF Protection
    > Level <-- is this https ?)


    Oh my... we're running in circles. You don't understand what you're
    asking for, I'm sorry to say.

    Up this thread you said: "My IT Specialists has internal policy: Every
    trefic should be secure."

    To which I responded: "LMS traffic cannot be encrypted because the
    hardware players don't support https."

    Which basically means: you cannot have all traffic secured. You can't.

    But most likely this isn't what your IT specialist wants anyway. I guess
    he doesn't want any access from the outside in a non-encrypted way. And
    that's where I said: don't open your LMS to the internet. Or tell us
    more about your setup.

    And here's where I'm stopping. We need more information about your
    setup. Your use case. The problem your IT guy is seeing. Maybe he can
    chime in here?

    --

    Michael
    Ok, Michael, here is some picture of company setup. Maybe now it will be clear for You:

    Name:  company_block2.png
Views: 78
Size:  72.1 KB
    Attached Images Attached Images  

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •