Encryption and El Gamal Signature - Page 11 - AVS Forum
Forum Jump: 
Reply
 
Thread Tools
post #301 of 315 Old 08-02-2011, 07:50 PM
jlv
Senior Member
 
jlv's Avatar
 
Join Date: Dec 2003
Location: MA
Posts: 306
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 12
Update: See v1.6 below


This includes the change to correct the logging issues reported above.

I have tested this under WiRNS3, but it should "just work" (® NJEARs'R'Us) on WiRNS2.

I've built two versions of the DLL: Just install the DLL from the appropriate subdirectory. The ZIP contains both DLLs as well as the source code.


With the DNNA servers still on-line, for WiRNS2 it's best to use v1.5.0 along with the LoginAuthLogout plugin.

Warning: Spoiler! (Click to show)
Spoiler  
Warning: Spoiler! (Click to show)
† (I'm still running WiRNS3, I have tested AuthActivate with it, and it works).

 

AuthActivate_v1.5.zip 21.6953125k . file
jlv is offline  
Sponsored Links
Advertisement
 
post #302 of 315 Old 08-02-2011, 07:58 PM
jlv
Senior Member
 
jlv's Avatar
 
Join Date: Dec 2003
Location: MA
Posts: 306
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 12
Quote:
Originally Posted by mjdbb1 View Post

I'm trying to run WiRNS 2.1 with AuthActivate 1.4 (have also tried 1.3 and 1.2). ...
Info from the WiRNS log:

Code:
[8/1/2011 18:31:49] [NTP] Proxying request to pool.ntp.org for 192.168.254.42
[8/1/2011 18:31:51] [PLUGIN] GetShellCommands initialized.
Of course, AuthActivate doesn't show up here, because of the logging issue described above.[/code]

AuthActivate is invoked in-between those two lines. With v1.5, you'd see:
Code:
[8/2/2011 22:39:05] [NTP] Proxying request to pool.ntp.org for 10.0.0.50
[8/2/2011 22:39:05] [PLUGIN] AuthActivate handling /cgi-bin/2.0/vtime2.pl
[8/2/2011 22:39:05] [PLUGIN] AuthActivate handling /cgi-bin/2.0/getca4.pl
[8/2/2011 22:39:06] [PLUGIN] GetShellCommands initialized.
The HTTPClient client error you are getting makes me think you are blocking access to http://production.replaytv.net/ some other way (your firewall? the Windows hosts file?). Can you get to that URL from a browser on the same machine as WiRNS?
jlv is offline  
post #303 of 315 Old 08-02-2011, 08:10 PM
Advanced Member
 
Space's Avatar
 
Join Date: Aug 2000
Location: NJ
Posts: 611
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 10
Quote:
Originally Posted by jlv View Post

...
The HTTPClient client error you are getting makes me think you are blocking access to http://production.replaytv.net/ some other way (your firewall? the Windows hosts file?). Can you get to that URL from a browser on the same machine as WiRNS?

Yes, he is blocking it at his firewall (as indicated in his prior posts). Why would WiRNS be trying to get to that domain with AuthActivate installed? Shouldn't AuthActivate take care of all the remaining functions that would normally have been proxyed to DNNA?

P.S Thanks for 1.5!

Is it possible to get a version like 1.5.0 (maybe 1.5.2?) that also handles getservers.pl?
The only ones it would proxy would be login.pl and logout.pl. This would make me feel safer using it to block any kind of possible server update that may be able to cause the Replay to bypass the WiRNS proxy (like sending new server domain names that WiRNS does not intercept), and yet still be able to use DNNA guide data.

Thanks again!

Space - AB8NdtJzDULjgKvuDX3eJxHpXx88Xy9H
Space is offline  
post #304 of 315 Old 08-03-2011, 09:23 AM
AVS Special Member
 
KenL's Avatar
 
Join Date: Nov 2001
Posts: 5,131
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 10
Quote:
Originally Posted by jlv View Post

...With the DNNA servers still on-line, for WiRNS2 it's best to use v1.5.0 along with the LoginAuthLogout plugin.

Thanks. v1.5.0 seems to work perfectly with the latest update of WiRNS 2.1
Code:
[8/2/2011 22:49:45] [DNS] Returning 192.168.x.1xx for production.replaytv.net to 192.168.x.xx5
[8/2/2011 22:49:46] [PLUGIN] LoginAuthLogout Proxying Login (nightly) for 192.168.x.xx5
[8/2/2011 22:49:46] [DNS] Returning 192.168.x.1xx for ntp-production.replaytv.net to 192.168.x.xx5
[8/2/2011 22:49:47] [NTP] Proxying request to time-nw.nist.gov for 192.168.x.xx5
[8/2/2011 22:49:47] [NTP] Proxying request to time-nw.nist.gov for 192.168.x.xx5
[8/2/2011 22:49:47] [NTP] Proxying request to time-nw.nist.gov for 192.168.x.xx5
[8/2/2011 22:49:47] [NTP] Proxying request to time-nw.nist.gov for 192.168.x.xx5
[8/2/2011 22:49:47] [NTP] Proxying request to time-nw.nist.gov for 192.168.x.xx5
[8/2/2011 22:49:48] [PLUGIN] AuthActivate handling /cgi-bin/2.0/vtime2.pl
[8/2/2011 22:49:48] [PLUGIN] AuthActivate handling /cgi-bin/2.0/getca4.pl
[8/2/2011 22:49:49] [PLUGIN] GetShellCommands initialized.
[8/2/2011 22:49:49] [PLUGIN] GetShellCommands using shellcmds from: C:\\WiRNS\\RTV5040xxCAxxxxxxx\\shellcmds for 192.168.x.xx5
[8/2/2011 22:49:51] [PLUGIN] ZipcodeProvider: Proxying request for 192.168.x.xx5.
[8/2/2011 22:49:51] [PLUGIN] ZipcodeProvider: Added 6 lineups for 192.168.x.xx5.
[8/2/2011 22:49:58] Hijacking headend request for WiRNS lineup 1 from 192.168.x.xx5, because we serve it locally with 13 channels.
[8/2/2011 22:49:59] Hijacking headend request for WiRNS lineup 2 from 192.168.x.xx5, because we serve it locally with 6 channels.
[8/2/2011 22:49:59] Hijacking headend request for WiRNS lineup 3 from 192.168.x.xx5, because we serve it locally with 10 channels.
[8/2/2011 22:50:00] Hijacking headend request for WiRNS lineup 4 from 192.168.x.xx5, because we serve it locally with 168 channels.
[8/2/2011 22:50:01] Hijacking headend request for WiRNS lineup 5 from 192.168.x.xx5, because we serve it locally with 155 channels.
[8/2/2011 22:50:02] Hijacking headend request for WiRNS lineup 6 from 192.168.x.xx5, because we serve it locally with 1 channel.
[8/2/2011 22:50:04] Proxying guide data for: 2011-08-03 for 192.168.x.xx5
[8/2/2011 22:50:06] Proxying guide data for: 2011-08-04 for 192.168.x.xx5
[8/2/2011 22:50:09] Proxying guide data for: 2011-08-06 for 192.168.x.xx5
[8/2/2011 22:50:10] Proxying guide data for: 2011-08-10 for 192.168.x.xx5
[8/2/2011 22:50:13] Proxying guide data for: 2011-08-15 for 192.168.x.xx5
[8/2/2011 22:50:18] [PLUGIN] NoSoftwareUpdate initialized.
[8/2/2011 22:50:26] [DNS] Returning 192.168.x.1xx for production.hd.pcdvr.replaytv.net to 192.168.x.xx5
[8/2/2011 22:50:26] [DNS] Returning 192.168.x.1xx for production-1.hd.pcdvr.replaytv.net to 192.168.x.xx5
[8/2/2011 22:50:26] [DNS] Returning 192.168.x.1xx for production-2.hd.pcdvr.replaytv.net to 192.168.x.xx5
[8/2/2011 22:50:44] [PLUGIN] GetNextCall initialized.
[8/2/2011 22:50:44] [PLUGIN] GetNextCall Time: 08:45 for 12 min to 192.168.x.xx5.
[8/2/2011 22:50:46] [PLUGIN] LoginAuthLogout Processing Servers for 192.168.x.xx5
[8/2/2011 22:50:49] [PLUGIN] LoginAuthLogout Proxying Logout (nightly) for 192.168.x.xx5
[8/2/2011 22:51:23] [DNS] Using file: C:\\WiRNS\\Plugins\\IVSProvider.hosts
[8/2/2011 22:51:23] [DNS] Returning 192.168.x.1xx for rddns-production.replaytv.net to 192.168.x.xx5
And without rolling back LoginAuthLogout.
Code:
Active WiRNS Plugins:
ChannelGuideProvider.dll (2.1.4104.16818)
ChannelRemap.dll (2.1.3954.39406)
GuideServer.dll (2.1.4205.19267)
HeadendProvider.dll (2.1.4060.27969)
IVS.dll (2.1.4089.25152)
PutSyslogProvider.dll (2.1.3954.39387)
RemoteControl.dll (2.1.4188.28666)
RSS.NET.dll (2.1.4188.28667)
ServerManagement.dll (2.1.4188.28672)
XactProvider.dll (2.1.4206.36598)
ZipcodeProvider.dll (2.1.4060.24120)
GetNextCall.dll (2.1.4062.20244)
GetShellCommands.dll (2.1.4062.16908)
IVSProvider.dll (2.1.4132.34573)
NoSoftwareUpdate.dll (2.1.3954.39408)
AuthActivate.dll (1.5.0.38129)
LoginAuthLogout.dll (2.1.4212.19043)
KenL is offline  
post #305 of 315 Old 08-03-2011, 03:16 PM
Member
 
mjdbb1's Avatar
 
Join Date: Aug 2009
Posts: 55
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 10
I updated to 1.5, and still can't complete a Netconnect without being able to access the mothership.

However, I guess since it sounds like there won't be any re-locking or disabling of the units, I suppose it's not much of an issue.

To satisfy my paranoid side, using all the Nosoftwareupdates, Noreplayzones, and AuthActivate 1.5, can the activation status or any other important areas be updated by using DNNA data?
mjdbb1 is offline  
post #306 of 315 Old 08-03-2011, 03:27 PM
AVS Special Member
 
KenL's Avatar
 
Join Date: Nov 2001
Posts: 5,131
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 10
Quote:
Originally Posted by mjdbb1 View Post

..However, I guess since it sounds like there won't be any re-locking or disabling of the units, I suppose it's not much of an issue.

To satisfy my paranoid side, using all the Nosoftwareupdates, Noreplayzones, and AuthActivate 1.5, can the activation status or any other important areas be updated by using DNNA data?

They can (and will?) do whatever the lawyers require just as in the past. But since their heart isn't really in it (to get us) those safeguards (as in the most recent past) *should* cut it.
KenL is offline  
post #307 of 315 Old 08-03-2011, 05:44 PM
Member
 
mjdbb1's Avatar
 
Join Date: Aug 2009
Posts: 55
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 10
Quote:
Originally Posted by Space View Post

Is it possible to get a version like 1.5.0 (maybe 1.5.2?) that also handles getservers.pl?
The only ones it would proxy would be login.pl and logout.pl. This would make me feel safer using it to block any kind of possible server update that may be able to cause the Replay to bypass the WiRNS proxy (like sending new server domain names that WiRNS does not intercept), and yet still be able to use DNNA guide data.

Thanks again!
Maybe it's just me, but according to my log, it already seems to handle getservers.pl...
mjdbb1 is offline  
post #308 of 315 Old 08-03-2011, 08:45 PM
Advanced Member
 
Space's Avatar
 
Join Date: Aug 2000
Location: NJ
Posts: 611
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 10
Quote:
Originally Posted by mjdbb1 View Post
I updated to 1.5, and still can't complete a Netconnect without being able to access the mothership.

However, I guess since it sounds like there won't be any re-locking or disabling of the units, I suppose it's not much of an issue.

To satisfy my paranoid side, using all the Nosoftwareupdates, Noreplayzones, and AuthActivate 1.5, can the activation status or any other important areas be updated by using DNNA data?
I would think not, but if you are unable to complete a netconnect with AuthActivate 1.5.1 active and mothership access blocked at your router, then there must be SOMETHING still trying to go out to the mothership. It is best to run wireshark to try to figure out what might still be getting through the defenses.

Even letting JUST the DNNA guide data through MAY allow some way to bypass the defenses (although highly unlikely), we really only know what can be done by monitoring historical net-connects and some limited code inspection. If there is some capability that has never been used before, but could be used to bypass the defenses, we would probably not know about it.
Quote:
Originally Posted by mjdbb1 View Post
Maybe it's just me, but according to my log, it already seems to handle getservers.pl...
Here are what the different versions of AuthActivate (for WiRNS 2.1) intercept:

Version 1.5.0   Version 1.5.1
getca4.pl   getca4.pl
vtime2.pl   vtime2.pl
    getservers.pl
    login.pl
    logout.pl


So, as you can see, version 1.5.0 (the one that lets you continue to get guide data from DNNA) does not block getservers.pl.

Note that I am not 100% sure that you need to allow login.pl to get to the mothership in order to get guide data from them, but it seems reasonable to me that you would not be able to get it without first "logging in".

If you are running 1.5.1 and can still get guide data from DNNA (the mothership), please let me know.

Space - AB8NdtJzDULjgKvuDX3eJxHpXx88Xy9H
Space is offline  
post #309 of 315 Old 08-04-2011, 01:02 PM
Member
 
mjdbb1's Avatar
 
Join Date: Aug 2009
Posts: 55
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 10
Space,

I was running 1.5.1 and was able to pull the data from DNNA. However, I downgraded to 1.5.0 so that I would get the Netconnect data on the main page of WiRNS for all my units, and I didn't see any major differences...they both just work for me.
mjdbb1 is offline  
post #310 of 315 Old 08-04-2011, 06:30 PM
Advanced Member
 
Space's Avatar
 
Join Date: Aug 2000
Location: NJ
Posts: 611
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 10
Quote:
Originally Posted by mjdbb1 View Post

Space,

I was running 1.5.1 and was able to pull the data from DNNA. However, I downgraded to 1.5.0 so that I would get the Netconnect data on the main page of WiRNS for all my units, and I didn't see any major differences...they both just work for me.

If that is the case then I guess you don't need to call login.pl before you pull guide data from DNNA.

Space - AB8NdtJzDULjgKvuDX3eJxHpXx88Xy9H
Space is offline  
post #311 of 315 Old 08-05-2011, 02:32 PM
jlv
Senior Member
 
jlv's Avatar
 
Join Date: Dec 2003
Location: MA
Posts: 306
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 12
Quote:
Originally Posted by Space View Post

If that is the case then I guess you don't need to call login.pl before you pull guide data from DNNA.

But... they would change that at any time.

I was actually thinking of adding a mode where it would send the login/logout/getca4/vtime2 request to DNNA, but then discard the reply [TYPO FIXED], and just send the unit the stub response it sends now.
jlv is offline  
post #312 of 315 Old 08-05-2011, 04:13 PM
Advanced Member
 
Space's Avatar
 
Join Date: Aug 2000
Location: NJ
Posts: 611
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 10
Quote:
Originally Posted by jlv View Post

But... they would change that at any time.

I was actually thinking of adding a mode where it would send the login/logout/getca4/vtime2 request to DNNA, but then discard the request, and just send the unit the stub response it sends now.

I think you mean discard the reply.

That sounds like it would be helpful if they started checking to make sure that you are not just picking and choosing what you want from DNNA and what you want to handle locally, but there doesn't seem to be much use for it at the present time... and since it seems like they are not going to do anything to "lock up" the system again, it is unlikely that they would do this...

Space - AB8NdtJzDULjgKvuDX3eJxHpXx88Xy9H
Space is offline  
post #313 of 315 Old 08-06-2011, 06:32 PM
jlv
Senior Member
 
jlv's Avatar
 
Join Date: Dec 2003
Location: MA
Posts: 306
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 12
I've changed the plugin to read a config file, so handling of login.pl/logout.pl and/or getservers.pl can be enabled or disabled dynamically. The config file uses the standard C# settings logic, which means it's an XML file called "AuthActivate.dll.config" and it needs to be installed in the same directory as 'AuthActivate.dll'. Details are in the README.txt file.

The ZIP file contains the source code as well as the DLL.

I have tested this under WiRNS3, but it should "just work" (® NJEARs'R'Us) on WiRNS2.


With the DNNA servers still on-line, there's no need to disable the login.pl/logout.pl/getservers.pl, so the included config file has handling of those requests disabled. But, you can enable handling of them (which prevents them from being sent to the DNNA servers) if you want.

 

AuthActivate_v1.6.zip 17.6875k . file
jlv is offline  
post #314 of 315 Old 08-14-2011, 06:54 AM
Member
 
rlichtefeld's Avatar
 
Join Date: Nov 2003
Location: Lawrenceville, GA
Posts: 150
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 10
This seems to work great. My wife missed the Season and Series Premiere Zones, so by reverting back to WiRNS 2.1 and adding this plugin, it made me look like a very bright guy to her.

I didn't tell her it was you guys that did all the heavy lifting, I just read a little and copied some files.

Thanks again!

Rob

Thanks: ijprest, waynethedvrguy, Remmer99, hdonzis, gduprey, LeeThompson, j.m., archdog99, FlipFlop, The Dreamer, chriv and all the other Replay Hackers out there.
rlichtefeld is offline  
post #315 of 315 Old 08-14-2011, 12:16 PM
Advanced Member
 
Space's Avatar
 
Join Date: Aug 2000
Location: NJ
Posts: 611
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 10
Quote:
Originally Posted by jlv View Post

I've changed the plugin to read a config file, so handling of login.pl/logout.pl and/or getservers.pl can be enabled or disabled dynamically.
...

Thanks for this! The only thing left now is to fix the issue with updating the "Last Net Connect" date/time when logout.pl is called. Have you requested help or even CVS access to the WiRNS source code (from Ryan) to see how the existing plugin is doing this?


Quote:
Originally Posted by rlichtefeld View Post

I didn't tell her it was you guys that did all the heavy lifting, I just read a little and copied some files.
...

You'd be surprised how many people are unable (or unwilling) to take the time to even do that!

Space - AB8NdtJzDULjgKvuDX3eJxHpXx88Xy9H
Space is offline  
Reply ReplayTV & Showstopper PVRs

User Tag List

Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page


Forum Jump: 

Posting Rules  
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off