Pipe dreaming - AVS Forum
Forum Jump: 
 
Thread Tools
post #1 of 5 Old 12-01-2000, 07:42 PM - Thread Starter
AVS Special Member
 
The Robman's Avatar
 
Join Date: Mar 2000
Location: Chicago, IL (from London, UK)
Posts: 3,392
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 10
I felt it necessary to delete the thread of this name. I would be happy to discuss the reasons with any of the participants via private email. I felt it was inappropiate for the kind of information that was being discussed to be available in an open forum.

The information that was being discussed could be used to gain illegal access to Replay's servers, thus compromising the security of the network itself, which would inevitably lead to the network being shutdown while new security measures were put in place, causing ALL users to go without service for that period of time.

I understand that the intent of the discussion was to continue service in the event of Replay going out of business. But, even given the recent announcements, I don't think that's likely to happen anytime soon. In the meantime, by all means carry on the previous conversation via email, but please don't hack into the Replay network itself. It is very likely that unauthorized access would be detected, and that user would most likely have their service terminated.

But, like I said in another thread. If Replay really were to go belly up, there would be loads of highly qualified technicians, with intimate knowledge of the software, out of work, all of whom having Replay units at home with no service! Idle hands, etc! http://www.avsforum.com/ubb/wink.gif I think that in that situation, the hackers would find themselves getting some very good help.

------------------
Later,
Rob.
http://www.hifi-remote.com/

Later, Rob

Select a link for questions on: Remotes, JP1, JP1 Forums
I prefer emails to PMs, my email is rob1 (at) rockabilly (dot) net
The Robman is offline  
Sponsored Links
Advertisement
 
post #2 of 5 Old 12-04-2000, 01:46 AM
Senior Member
 
Michael Gwynn's Avatar
 
Join Date: Aug 2000
Location: avon, ohio
Posts: 449
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 10

Good call, I totally agree. It's just not appropriate.
Michael Gwynn is offline  
post #3 of 5 Old 12-04-2000, 01:34 PM
Member
 
ijprest's Avatar
 
Join Date: Sep 2000
Location: Ottawa, ON
Posts: 165
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 10
First, I understand why the thread was deleted, and I'm not complaining. Some of the ideas discussed were probably inappropriate for public consumption.

Again, I will state the my intention was not to gain illegal access to Replay's dial-up network. Nor was my intention to replace Replay's servers in the (however unlikely) event that Replay goes away, though a lot of the work required is the same. I simply want to proxy the connection (eliminate LD charges), and substitute my own channel guide data for those times when I am outside of the US.

Anyone who is still interested in discussing this with me is welcome to contact me directly via email at ijprest@uwaterloo.ca .

Thanks.
ijprest is offline  
post #4 of 5 Old 12-04-2000, 08:07 PM - Thread Starter
AVS Special Member
 
The Robman's Avatar
 
Join Date: Mar 2000
Location: Chicago, IL (from London, UK)
Posts: 3,392
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 10
I know the intent of this thread was not malicious, but it did expose information that in the wrong hands could have been used in such a way.

By all means continue the discussion off line.

------------------
Later,
Rob.
http://www.hifi-remote.com/

Later, Rob

Select a link for questions on: Remotes, JP1, JP1 Forums
I prefer emails to PMs, my email is rob1 (at) rockabilly (dot) net
The Robman is offline  
post #5 of 5 Old 12-05-2000, 02:35 AM
Member
 
kvigor's Avatar
 
Join Date: May 2000
Posts: 36
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Liked: 10
I was alarmed when I realized (and have since confirmed) what this meant; I though TiVo was meant to be the one with the shoddy engineering! (*)

So I certainly don't object to having the thread deleted, but I should point out that security through obscurity is no security at all. The problem is now known, and there will be people abusing it. Replay had better address this problem (**) or they will find themselves negotiating a new, much more costly contract with their network provider.

(*) ho ho; I made a funny.

(**) it is possible that it has already been "dealt with" in the sense that abusers can be quickly detected and dealt with; I haven't tested enough to know one way or the other, nor do I want to.
kvigor is offline  
Closed Thread ReplayTV & Showstopper PVRs

User Tag List

Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page


Forum Jump: 

Posting Rules  
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off