I've seen on a few sites that have streaming media that they use a script that hides the url of the video file. I think it can be done with javascript or a PHP script. Anyone know any scripts that do this?

This sort of security-through-obscurity is pretty useless; any halfway-savvy user can just look for the URL in the script.

One thing I did for someone on a past contract was write a flash player and just use very basic encyption. The 'scrambled' file is free for anyone to download, but only the player (which is compiled) knows how to turn it back into a movie.

Easy to break, for someone who's smart and wants to? Sure. Did anyone? Not that I know of.

This sort of security-through-obscurity is pretty useless; any halfway-savvy user can just look for the URL in the script.

One thing I did for someone on a past contract was write a flash player and just use very basic encyption. The 'scrambled' file is free for anyone to download, but only the player (which is compiled) knows how to turn it back into a movie.

Easy to break, for someone who's smart and wants to? Sure. Did anyone? Not that I know of.

I think a great majority of people wouldn't be able to crack it, and the few that would be able to might not be interested. The casual user, after all, isn't as "savvy" as most webmasters. Basically, I'm pretty sure it would prevent a larger majority from stealing the content, and that's just what I am aiming to do.

More help would be appreciated, thanks.

You can do the same sort of obfuscation with a URL. I'm pretty tired right now or I'd write you some quick code, but try this;

Map each alphanumeric character to another alphanumeric character. Write a quickie PHP script that scrambles the URL (by choosing a random mapping and translating each character into its paired character), and a quickie JS script that unscrambles it (doing the same thing in reverse). Have the PHP script generate the JS so that the key is different each time. Then the URL is never handed to the client plaintext.

It's basically more complex ROT13.

You can do the same sort of obfuscation with a URL. I'm pretty tired right now or I'd write you some quick code, but try this;

Map each alphanumeric character to another alphanumeric character. Write a quickie PHP script that scrambles the URL (by choosing a random mapping and translating each character into its paired character), and a quickie JS script that unscrambles it (doing the same thing in reverse). Have the PHP script generate the JS so that the key is different each time. Then the URL is never handed to the client plaintext.

It's basically more complex ROT13.

sounds interesting, but I'm not sure how to make such a script in JS or PHP. If you ever have time and can write some code, it would be greatly appreciated.

I don't think that there is a way to prevent it because that all of the IE temporarly files are located in an hidden folder.

Simply put, flash:
create a flash playlist calling the files you want called, embed the FLASH item into the page, and voilla, you've got protected video.
Of course, you have to actually do things properly when storing the video too (random 25-70 char names, etc), but when you embed it into the flash playlist, as long as you named the video obscurely, there shouldn't be any issues at all with people "stealing video".

Did you think about watermarking the videos instead? That way even if somebody does steal it, their visitors will come looking for you.

Be sure that they probebly will edit the video too..

well about the watermark thing.. you can jus write your site url in very dim text in the middle of the video.. try editin that! lol..

^^
That'll work, I guess, lol...

anyone know any good programs for watermarking a whole lot of videos at once?

I will definitely watermark my videos!

Very interesting ideas guys! Thanks

@Linux-tech...
What do u mean by properly storing the video (Random 25-70 character names)???

Also what do u mean by naming the video obscurely?

Thanks in advance for the response! ;-)

Rich C

Simply put, flash:
create a flash playlist calling the files you want called, embed the FLASH item into the page, and voilla, you've got protected video.
Of course, you have to actually do things properly when storing the video too (random 25-70 char names, etc), but when you embed it into the flash playlist, as long as you named the video obscurely, there shouldn't be any issues at all with people "stealing video".

I will definitely watermark my videos!
What do u mean by properly storing the video (Random 25-70 character names)???
Also what do u mean by naming the video obscurely?
Don't call it video1.flv but call it something like 8bbb961eadb7f8f1460715191281c69e.flv

Use random generated names, based on the session :)

cheers :beer:

Real Audio now provides an integration system that allows users to download all movies (including flash) by a click of a button.

There is no use to hiding it anymore.

Peace,

Simply put, flash...<snip>

Flash is better. But can be relatively easily decompiled. And, if it's done with actionscript in the first frame, the trial version of Sothink can do it. Does add a significant hurdle though, and novice users won't be able to do it.

I'm generally of the opinion that it is futile to try to prevent the downloading of content that you can see. Watermark it, sure. But trying to prevent downloading/saving of it is a waste of time.

You can add something like this to your .htaccess file, your video file would be called myvideo.fla for example.

It would also protect images with the extensions jpeg, gif, bmp and png, please remove the spaces after %{HTTP_REFERER} !^h in the line RewriteCond %{HTTP_REFERER} !^h t t p : / / ( w w w \ . ) ? y o u r d o m a i n \ . c o m /[NC] as it wouldnt let me post it properly.. hope this helps you.

------------------------------------------------add to .htaccess --------------------------



RewriteEngine On
RewriteCond %{HTTP_REFERER} !^h t t p : / / ( w w w \ . ) ? y o u r d o m a i n \ . c o m /[NC]
RewriteCond %{HTTP_REFERER} !^$
RewriteRule \.(jpeg|gif|bmp|png|fla)$ video/myvideo.fla [L]