Skip to main content
A
aruser
Known Participant
August 23, 2010
Question

How to secure Flash Media Streaming Server 3.5 (live stream connection)

  • August 23, 2010
  • 3 replies
  • 5224 views

I have Flash Media Streaming Server 3.5 (not Interactive) running on RHEL5.5 x86_64 Linux.

All is working well, however how do I prevent unauthorized access to connecting to the live stream and streaming content?

How can I setup the server to require a user and password to stream live media to the server?

Any help would be great, I am new to this product and I have been reading some documentation but I have not found a clear cut answer on how to force a username and password to connect to the server to stream live content only.

I am using the Adobe FMS Apache install, what files need changing?

I have the following files:

/opt/adobe/fms/applications/live
total 44
-rwxr-xr-x 1 fms fms 1035 Jul 27 14:52 allowedHTMLdomains.txt
-rwxr-xr-x 1 fms fms  992 Jul 27 14:52 allowedSWFdomains.txt
-rwxr-xr-x 1 fms fms 1550 Jul 27 14:52 Application.xml
-rwxr-xr-x 1 fms fms 4371 Jul 27 14:52 main.far
-rwxr-xr-x 1 fms fms 2292 Jul 27 14:52 readme.txt

I want to lock down a person from connecting to the server on the public internet and starting a live stream?

Can this be done with a user name and password?

    This topic has been closed for replies.

    3 replies

    A
    aruserAuthor
    Known Participant
    August 24, 2010

    I will setup a new VM and install the new 3.5.4 Flash Media Player and do a test envrionment before working on the standalone server.

    If I could find out for sure if the Flash Media Streaming Server 3.5.4 supports the authentication plug-in would be great.

    Thanks

    S
    SE_0208
    Participating Frequently
    August 25, 2010

    Yes Flash Media Streaming Server 3.5.4 supports the FMLE authentication plug-in - 100% confirmed


    A
    aruserAuthor
    Known Participant
    August 25, 2010

    Do you have a link to the documentation to install the extra auth_plugin on the server.

    I am building a new VM server with the newest release, to test our settings on it.

    thanks

    S
    SE_0208
    Participating Frequently
    August 24, 2010

    If you are concerned about anyone starting publishing to your stream then we have security update on this. Please upgrade to 3.5.4 and now you can use FMS Authentication Add-in (used with FMLE as publisher). If you are facing problems with publisher which are not FMLE, please enable SWF Verification so that only valid SWF's connect to your FMS.

    You can find 3.5.4 update here : http://www.adobe.com/support/flashmediaserver/downloads_updaters.html

    You can find FMS Authentication Add-in on FMLE Download page: https://www.adobe.com/cfusion/entitlement/index.cfm?e=fmle3 (when you click on Agree - it will prompt for your Adobe ID - then when you reach Download page - you will get Optional Download of Authentication Add-in)

    A
    aruserAuthor
    Known Participant
    August 24, 2010

    The plug-in states it only works with the Interactive Server & Development Server?

    "The Flash Media Server Authentication Add-In is only available for the  Flash Media Interactive Server and the Flash Media Developer Server.  This Add-In does not work with the Flash Media Streaming Server."

    So the existing install of Flash Media Streaming Server has to be completly removed, and all of the editing changes to the appearance will have to be edited all over again?

    Is this correct?

    thanks

    A
    Anonymous
    August 24, 2010

    By default, a client can connect to Flash Media Server from any domain or IP address, which can be a security risk. You can create a whitelist of allowed domains (or a blacklist of banned domains) to ensure that only authorized clients can connect to your applications or services. You can add a comma-delimited list of domains and/or IP-address blocks in the Adaptor.xml or vHost.xml configuration files to add this level of security. This is usually the first step in locking down your server, and it prevents malicious or unauthorized domains from freely accessing your applications and streams.

    Terms & ConditionsAccessibility statement
    Using the community Terms of use Privacy Cookie preferences Do not sell or share my personal information ad choicesAdChoices