[flexcoders] Re: Actionscript SSH Library..heard of any?
I think Alchemy (http://labs.adobe.com/technologies/alchemy/) might just be able to take me down the path I need. Plus it might force me to learn C/C++. Not sure if I am excited about that or not though. --- In flexcoders@yahoogroups.com, Nate Beck [EMAIL PROTECTED] wrote: Even though this is absolutely a preview / research project at the moment. Adobe Alchemy (http://labs.adobe.com/technologies/alchemy/): Welcome the preview release of codename Alchemy. Alchemy is a research project that allows users to compile C and C++ code that is targeted to run on the open source ActionScript Virtual Machine (AVM2). The purpose of this preview is to assess the level of community interest in reusing existing C and C++ libraries in Web applications that run on Adobe(R) Flash(R) Player and Adobe AIR(R). Alchemy will allow you to take a c++ SSH library, such as http://www.netsieben.com/products/sshlib/. I haven't tested this, it's just a concept. But it seems like it might work. It might be able to give you the SSH interaction you're looking for within Flash. On Mon, Nov 17, 2008 at 11:36 AM, r.fender [EMAIL PROTECTED] wrote: Currently, it is browser based, running through SSL, using AMFPHP to execute shell_exec() commands to run low-level Unix scripts to configure the devices. Are you saying the existing browser-based version executes commands locally (i.e. the browser and web server (with AMFPHP both live on the device) ? If I understand your question correctly, the web server (Apache) and AMFPHP are running on the device itself. The browser is just what the user has on their local machine (Firefox, Safari, IE, etc). So if I was the user, I would open a browser and navigate to the IP address of the device. The device would then just serve up the application. To use a real device as an example let's just say the device is a DVD player and you have the ability to log into it via it's IP address on your network and do some low-level configurations on it. Make sense? I confuse myself on this sometimes :)
[flexcoders] Re: Actionscript SSH Library..heard of any?
Why not have your app push the commands up to a web server, and the device polls that server for commands ? Well, we are polling now for command results and they want real-time returns. They want me to hook into a socket run a command/unix script and wait for the return. Some scripts run continuously on the server and return multiple times before completing. Currently, I have to poll to get those multiple lines of return. The webserver on the device is currently placed at the lowest priority of the processor (if that's the correct way of phrasing it). So if I can plug into a socket and sit and wait, then I don't have to keep opening and closing that HTTP socket for every command. This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at Halliwells LLP, 3 Hardman Square, Spinningfields, Manchester, M3 3EB. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by The Solicitors Regulation Authority. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 2500. For more information about Halliwells LLP visit www.halliwells.com.
[flexcoders] Re: Actionscript SSH Library..heard of any?
Could you use the webkit browser in AIR to do the SSL connection? I don't think it needs to be visible to work. Just an idea, and It's probable I've not understood the reasons the project managers want to use AIR. That's definitely and idea I hadn't thought about. hurlant's as3crypt library has a TCL(ssl) connection that works great. Might have to look into that. Thanks for the idea. -Original Message- From: flexcoders@yahoogroups.com on behalf of r.fender Sent: Fri 14/11/2008 18:55 To: flexcoders@yahoogroups.com Subject: [flexcoders] Re: Actionscript SSH Library..heard of any? Yep, that's the complication that scares me. I have an application that runs in an embedded device. Currently, it is browser based, running through SSL, using AMFPHP to execute shell_exec() commands to run low-level Unix scripts to configure the devices. The project managers now want to remove the app from the browser and use AIR, and connect via a binary socket to call and run those UNIX scripts. I have all the root access permissions I need. But using a secure connection like SSH would be the cat's meow. I can currently do everything I need through sockets with Telnet but there is no security layer on it (that I know of) and that just isn't gonna fly with the execs. --- In flexcoders@yahoogroups.com, Tom Chiverton tom.chiverton@ wrote: On Thursday 13 Nov 2008, r.fender wrote: Just thought I'd throw that question out there to see what you all know. SSH is really, really, complicated. What are you trying to achieve ? -- Tom Chiverton Helping to synergistically enhance functionalities This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at Halliwells LLP, 3 Hardman Square, Spinningfields, Manchester, M3 3EB. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by The Solicitors Regulation Authority. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 2500. For more information about Halliwells LLP visit www.halliwells.com. __ This communication is from Primal Pictures Ltd., a company registered in England and Wales with registration No. 02622298 and registered office: 4th Floor, Tennyson House, 159-165 Great Portland Street, London, W1W 5PA, UK. VAT registration No. 648874577. This e-mail is confidential and may be privileged. It may be read, copied and used only by the intended recipient. If you have received it in error, please contact the sender immediately by return e-mail or by telephoning +44(0)20 7637 1010. Please then delete the e-mail and do not disclose its contents to any person. This email has been scanned for Primal Pictures by the MessageLabs Email Security System. __
[flexcoders] Re: Actionscript SSH Library..heard of any?
Could you use ssh tunneling (outside of your air app). It would mean that you would need to install an ssh client and set it up first... It dependes if your project is for private consumption or public... Not sure if the upper-ups would be willing to want to require the admins to install another item to run the application. On Fri, Nov 14, 2008 at 8:55 PM, r.fender [EMAIL PROTECTED] wrote: Yep, that's the complication that scares me. I have an application that runs in an embedded device. Currently, it is browser based, running through SSL, using AMFPHP to execute shell_exec() commands to run low-level Unix scripts to configure the devices. The project managers now want to remove the app from the browser and use AIR, and connect via a binary socket to call and run those UNIX scripts. I have all the root access permissions I need. But using a secure connection like SSH would be the cat's meow. I can currently do everything I need through sockets with Telnet but there is no security layer on it (that I know of) and that just isn't gonna fly with the execs. --- In flexcoders@yahoogroups.com flexcoders%40yahoogroups.com, Tom Chiverton tom.chiverton@ wrote: On Thursday 13 Nov 2008, r.fender wrote: Just thought I'd throw that question out there to see what you all know. SSH is really, really, complicated. What are you trying to achieve ? -- Tom Chiverton Helping to synergistically enhance functionalities This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at Halliwells LLP, 3 Hardman Square, Spinningfields, Manchester, M3 3EB. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by The Solicitors Regulation Authority. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 2500. For more information about Halliwells LLP visit www.halliwells.com. -- Fotis Chatzinikos, Ph.D. Founder, Phinnovation [EMAIL PROTECTED],
[flexcoders] Re: Actionscript SSH Library..heard of any?
Currently, it is browser based, running through SSL, using AMFPHP to execute shell_exec() commands to run low-level Unix scripts to configure the devices. Are you saying the existing browser-based version executes commands locally (i.e. the browser and web server (with AMFPHP both live on the device) ? If I understand your question correctly, the web server (Apache) and AMFPHP are running on the device itself. The browser is just what the user has on their local machine (Firefox, Safari, IE, etc). So if I was the user, I would open a browser and navigate to the IP address of the device. The device would then just serve up the application. To use a real device as an example let's just say the device is a DVD player and you have the ability to log into it via it's IP address on your network and do some low-level configurations on it. Make sense? I confuse myself on this sometimes :)
[flexcoders] Re: Actionscript SSH Library..heard of any?
Yep, that's the complication that scares me. I have an application that runs in an embedded device. Currently, it is browser based, running through SSL, using AMFPHP to execute shell_exec() commands to run low-level Unix scripts to configure the devices. The project managers now want to remove the app from the browser and use AIR, and connect via a binary socket to call and run those UNIX scripts. I have all the root access permissions I need. But using a secure connection like SSH would be the cat's meow. I can currently do everything I need through sockets with Telnet but there is no security layer on it (that I know of) and that just isn't gonna fly with the execs. --- In flexcoders@yahoogroups.com, Tom Chiverton [EMAIL PROTECTED] wrote: On Thursday 13 Nov 2008, r.fender wrote: Just thought I'd throw that question out there to see what you all know. SSH is really, really, complicated. What are you trying to achieve ? -- Tom Chiverton Helping to synergistically enhance functionalities This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at Halliwells LLP, 3 Hardman Square, Spinningfields, Manchester, M3 3EB. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by The Solicitors Regulation Authority. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 2500. For more information about Halliwells LLP visit www.halliwells.com.
[flexcoders] Actionscript SSH Library..heard of any?
Has anyone seen or know of an Actionscript based SSH library? I looked at as3Crypt from hurlant but my super limited knowledge of anything security didn't help me to recognize anything about ssh in there. Just thought I'd throw that question out there to see what you all know.
[flexcoders] Re: firefox and FileReference.upload over SSL - error 2038
The server configuration I have is: Apache 2 PHP 4 OpenSSL I use the the following URL when I call .upload(): https://xx.xx.xx.xxx:443/cgi-bin/myUploadScript.sh I forgot to mention the this works on Linux as well except for Firefox on Linux. That's three OS's all running Firefox and that is the offending browser on all three. My money's on Firefox's plugin. --- In flexcoders@yahoogroups.com, Seth Caldwell [EMAIL PROTECTED] wrote: This is very good to hear. If any developer thinks they can do the following very easy, please do so and post here to bring more attention to this issue - it is a huge bug! Step 1: Install apache (ssl version) Step 2: install openssl if you don't have it already, and generate your keys, etc. Step 3: Configure apache to run ssl and non ssl from the same directory. Verify with an html file. Step 4: Install php, configure apache to use it. Step 5: Create a test project that uses filereference.upload, perhaps using http://localhost/upload.php as the target. Verify this works. Step 6: Change it to https://localhost/upload.php and watch it work in IE but fail miserably in firefox. Step 7: Post back to the list that you encountered the same bug. Or better yet, it works for you over https and post here and let us know. So far I have completed these steps about 7 times on different machines. Not one of them worked. If only the runtime's source code were open and I could indentify the problem there. So far only Flex Builder is open, am I right? Seth
[flexcoders] Re: firefox and FileReference.upload over SSL - error 2038
I have been running into the same thing since the FileReference API was introduced. I just chalked it up to the Firefox Flash Player plugin not working. I run my app in an embedded system and use the FileReference API to actually upload a software upgrade which the system them consumes and upgrades with. This works fine on Mac Safari and Windows IE but not on Mac Firefox or Windows Firefox...or for that matter, Windows Safari...but I am not too worried about that one. So you are not the only one with the FIleReference SSL/Firefox issue. --- In flexcoders@yahoogroups.com, wizardry_wiz [EMAIL PROTECTED] wrote: I have looked at the wireshark packets, which is how I know the image was never posted. I tried WebScarab this morning, and I must say that is my new favorite tool, thank you for pointing me at it. However, when I attempt the filereference.upload, it does not display anything having gone to it from the browser (although wireshark shows some ssl handshake attempt). This leads me to believe that the ssl handshake from flex to webscarab (using firefox) is failing. Which would indicate that there is nothing I can do as a developer and the bug is a part of the firefox plugin. I'm surprised nobody has run into this yet; I guess uploads over SSL aren't that common. If it would help, I can mail you offlist a url with a login for you see exactly what is going wrong and wireshark/etc yourself. Seth --- In flexcoders@yahoogroups.com, Tom Chiverton tom.chiverton@ wrote: On Monday 24 Sep 2007, wiz@ wrote: not https - an error is immediately thrown, it appears to mishandle the ssl handshake, as image data is never actually sent in a post. Again, everything is fine in IE, just not in firefox. Do you have WireShark/ethereal traces to back this up ? What about WebScarab (or other SSL intercepting HTTP recorder) output ? -- Tom Chiverton Helping to ambassadorially deploy value-added design-patterns on: http://thefalken.livejournal.com This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com.