Quote:
Originally Posted by OnanistsCash
an experienced leecher would just have to hook the appropiate syscall/DLL call after the stream is decrypted and he has the full stream as if he downloaded it ....
|
It's not as simple as that, because Flash for the most part decodes the stream in software, you need to patch flash binary itself (you'd get raw pixel/audio data with dll hook -> loss in quality). Noone has done that AFAIK (and RCE effort involved tops that of reversing .swf itself).
But I see where you're coming from, if this will be done, flash is broken for eternity..
I just want to point out actually existing tools.
Quote:
Originally Posted by OnanistsCash
Again, i think its an interesting thing to discuss about letting end users download or not the movies to prevent piracy, but i think thats the discussion we should focus on, not in just protecting out movies, believe me on this one, the leechers, the big ones .... Usually are very experienced users with enough knowledge to do this or have plenty "hacker" friends close who would easily make a DLL/syscall hook for him to achieve this stream encryption bypassing.
|
Again, such a patched Flash player is pure evil. rtmpdump is developed by highly skilled individuals, but for the sake of interoperability (to break out of adobe's walled garden), rather than to pirate stuff explicitly.
Quote:
Originally Posted by OnanistsCash
So the question here is, are the average end users who we are targeting on selling memberships and actually buy them the ones that leech content, or its only a bunch of guys that join, download all content and then upload it to major tubes, torrents, etc?
If we are talking about this bunch i mention, forget it, all you mentioned wont secure the stream, now if an important % of the pirated content comes from the average end user, then its worth the try.
...
|
Imo theres simpler way to speculate about that. Use poker psychology: Casual (that is, harmless) pirate will just upload scenes he likes to private sites like chegg*t. The actual harm is imo neglible, may even serve as good promo if you strap huge site logo watermark somewhere.
People interested will come to you for more.
Regarding the dedicated pirate, their skill is imho at least on the google "how to record rtmpe securetoken" level. They're doing it for fun, race and glory in the warez underground. Unfortunately the release will find it's way to torrent sites eventually.
Quote:
Originally Posted by OnanistsCash
Why not just implement it still? Because i personally like downloading movies and i think lots of end users do too, to watch it on their TVs, have it on their collections, etc, and not necesarily to pirate it, so, if that end user is not the problem, it would be a bad choice from a marketing point of view disabling them from the ability to make the downloads.
My two cents.
|
You might be onto something there. Perhaps the right way would be detecting and baiting the web-scraping bot in progress?
For example, there's no way for the evil guy to check all of those dozen hours he just scrapped, so injecting annoying "THIS STUFF IS PIRATED" every few frames once the bot is detected might be fun :)