Forums

In enigma2 the stream service uses http so if you cannot use openvpn it is quite insecure.

With python script pystreamy performs an internal reverse proxy and the service stream is then by https.

With enigma2:
http://192.168.1.45:...1:C00000:0:0:0:

With python pystreamy script:

https://192.168.1.45...1:C00000:0:0:0:

download:

http://tropical.jung...line/pystreamy/

Spanish manual:

https://jungle-team....seguro-enigma2/

to generate the necessary certificates for the internal reverse proxy of the enigma2 receiver, it has been carried out with dehydrated

Script shell for duckdns

https://jungle-team....cados.sh_-2.zip

HTTPS is only useful against man-in-the-middle attacks, which is not relevant for a stream. Using HTTPS doesn't make it not more secure at all.

The reason a VPN is more secure is not because of the encryption, but because of end-point authentication, similar to using an SSH tunnel.

HTTPS is only useful against man-in-the-middle attacks, which is not relevant for a stream. Using HTTPS doesn't make it not more secure at all.

 

The reason a VPN is more secure is not because of the encryption, but because of end-point authentication, similar to using an SSH tunnel.

if it is true, but it depends on what situations such as the use of a smartv do not have the possibility of using openvpn, it will be somewhat safer to use https than http.

In addition to the reverse proxy with pystreamy, the authentication data is not that of the enigma 2 receiver but of the created proxy, therefore if someone accessed that data, they would not have the enigma2 authentication data.

The smarttv is a client, the box is a server, so in terms of security those two don't really compare.

The biggest issue with opening up your box onto the internet is it being hijacked for an IPTV streaming network, and you don't prevent that by encapsulating the stream into TLS.

I just want to make sure people reading this understand that, and not have a false sense of security...

The smarttv is a client, the box is a server, so in terms of security those two don't really compare.

 

The biggest issue with opening up your box onto the internet is it being hijacked for an IPTV streaming network, and you don't prevent that by encapsulating the stream into TLS.

 

I just want to make sure people reading this understand that, and not have a false sense of security...

If we agree on that it is not that you have more security to encapsulate, but at least you are not using the enigma2 system login, that if someone accessed the username and password of the stream they would also have the access data to the receiver .... since in enigma2 the user for stream is the same as the user to access the system

In short, it is advisable and safer to use openvpn as you say, but in the case of not being able to use openvpn it is safer to use https with a username and password different from the enigma2 system

Yes, I agree.

But in that case I still won't go this route, but use an SSH tunnel instead, in combination with public key authentication.

Yes, I agree.

 

But in that case I still won't go this route, but use an SSH tunnel instead, in combination with public key authentication.

True.

You do need a very good internet connection between the two devices to make that work btw. I have a decent connection, and I've never been able to have a stable TS stream, there is simply too much latency and jitter involved for realtime non-buffered streams to work reliably...

version 5.0 possibility to add multiple users straming and status

Y en status puedes ver que usuarios se han conectado