On Mon, Apr 2, 2012 at 6:22 AM, Mario Contestabile <[email protected]> wrote: > Thanks to all that replied, interesting stuff. Looks like a web tool I may > use in the future. > > > > On a related note I have been putting together a p2p web app, (with Flash as > opposed to JS) using a protocol known as RTMFP. > > > > From the Adobe literature I assumed the channel was well encrypted > (http://www.ietf.org/proceedings/10mar/slides/tsvarea-1.pdf) but if you guys > know otherwise…Facebook uses the same protocol for some of its p2p file > transfers. > > > > So although I can promote it as secure, I’m not privy to the Adobe source > code. I wonder if any of you had the opportunity to analyze it to any depth?
I can't directly speak to RTMFP since I haven't seen the spec or read the code, but if their isn't a public spec, then you can only trust Adobe and Flash itself. That said, are you seriously asking if Adobe Flash == Secure? Because I'm trying to think of any piece of software which has had as many security vulnerabilities in the last 3 years... oh, that's right, Adobe Acrobat Reader. http://www.adobe.com/support/security/#flash Seriously, Adobe products have a horrible security history. -- Aaron Turner http://synfin.net/ Twitter: @synfinatic http://tcpreplay.synfin.net/ - Pcap editing and replay tools for Unix & Windows Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety. -- Benjamin Franklin "carpe diem quam minimum credula postero" _______________________________________________ cryptography mailing list [email protected] http://lists.randombit.net/mailman/listinfo/cryptography
