Stolen Flash

  • Started
  • Last post
  • 26 Responses
  • ********
    0

    very true chimchim, however, if one understands XML and that's utilized along side the SSSs, they could theoretically steal it. Uhmm, not that I've done it or anything!

    ********
    0Permalink
    UpvoteDownvote
    Dogear
    Flag
      Show [[ numHiddenNotes ]] more notesAdd Note
      SaveCancel
    • chimchim0

      you are correct.

      very true... since your xml format is in public view while being loaded in the client browser.

      stupid me. At least it deters them somewhat...

      chimchim 0Permalink
      UpvoteDownvote
      Dogear
      Flag
        Show [[ numHiddenNotes ]] more notesAdd Note
        SaveCancel
      • ********
        0

        well I guess it just depends on how you set it up. A lot of times, people will link to some XML file that sits within the same directory and you can guess where it sits. Funny... well at least you can learn from it, but I don't use it commercially or anything and I don't condone it.

        ********
        0Permalink
        UpvoteDownvote
        Dogear
        Flag
          Show [[ numHiddenNotes ]] more notesAdd Note
          SaveCancel
        • eik0

          SWF SECURITY TUTORIAL:

          Ok, guys, i did this once and it worked 100% for me, unfortunately, when switching to mac, i lost all my script files,but i can tell you how it works:

          1. your main swf file is a loader (container), i used additional tag on the pages to pass on what swf to load from a PHP page.
          2. contains the name of the movie (or resource like XML), but not the whole path
          3. loader calls the .php script and passes on the value.
          4. php script checks for the refferer, if it is "www.yoursite.com" then it goes on, else - returns error.
          5. then the script adds the "path-to-swf-or-XML" to the value received from swf
          6. finally, it ataches and etc. (i think there are 4 in total) file headers to swf and returns it back to your container movie.

          Result: nothing is cached, the file location is unknown to users, the code is SAFE - voila!

          Hint! try to put the code in hard-to-gues directory.

          ohh.... and if you make this script, please send it to me to, i'm just too lazy to do it myself :)

          eik 0Permalink
          UpvoteDownvote
          Dogear
          Flag
            Show [[ numHiddenNotes ]] more notesAdd Note
            SaveCancel
          • eik0

            F***, i'm an a**hole.

            FIX:

            1. your main swf file is a loader (container), i used additional tag on the pages to pass on what swf to load from a PHP page.

            2. The TAG i mentioned above contains the name of the movie (or resource like XML), but not the whole path, it could be a number for ex.

            eik 0Permalink
            UpvoteDownvote
            Dogear
            Flag
              Show [[ numHiddenNotes ]] more notesAdd Note
              SaveCancel
            • eik0

              ...... (no comments please)

              why does this thing strip HTML tags? ://

              6. finally, it ataches NO CACHE and EXPIRED etc. (i think there are 4 in total) file headers to swf and returns it back to your container movie

              eik 0Permalink
              UpvoteDownvote
              Dogear
              Flag
                Show [[ numHiddenNotes ]] more notesAdd Note
                SaveCancel