markm9999 wrote: > NOTE: I reference SubSonic below alot because it is the piece of > software that I most recently began playing with when I started this > thread. Feel free to substitute ANY software capable of making your > personal music available to a 'web/app player'. > > Again, respectfully, I never said it HAD to be a cloud service, or at > least start out as one. SubSonic doesn't as it relies on you/it opening > a FW port. > > Initially it could start out as an 'open port' on our firewall - after > all, SubSonic or a VPN needs one anyway. > External IP existence would be through any one of the many domain to IP > services out on the Internet. > > If it were a cloud service, to answer the question of a subscription fee > directly - $5-10/mo, but for the higher level there would probably need > to be some other value added benefit for most people. > > As far as gauging interest & funding potential, I suggested setting up a > 'gofundme' type account. Until it hits a certain level, no work need be > done. > Another funding source is in-app ads which is what SubSonic does, unless > you're a 'premium' member. > I'm sure there are others, such as an in-app purchase to enable this > feature > But maybe it's not worth the effort - fine. > > So now I'll ask the question that I can't answer and into territory that > I only have a cursory knowledge of at best- > Personally, my thought was more along the lines of an app that runs > within our home network that acts as an LMS proxy, but provides the > needed security that LMS lacks. It would provide a feed over https to a > stripped down 'player only' app on the phone - since there is no reason > to control all of LMS. At least initially, 'user' security could be > through some sort of certificate that could be imported into the app, > distributed via email. > > Could the LMS proxy server app run in some kind of 'sandbox' to prevent > other potential of hackery? > > Is there any existing open source software, that's fairly well tested, > that could be used to piece something like this together 75% of the > way? > > Finally on the subject, since the major players in this space believe > this issue to be a dead/silly idea/not worth the effort, I'll drop it, > and simply try to find a product like SubSonic, et. al., but if possible > with an internet proxy. > > 2 additional things- > Pippin, is there any chance you'd consider adding an SSH option to your > app in particular, similar to how the old SoftSqueeze emulator did? > In my use case, a VPN will not work due to traffic restrictions, as well > as internet radio services, etc. - but SSH is allowed, or can be > granted. > > Again, this could be provided in a special 'player only' product that > costs extra that I would willingly pay. > > Also, to all - I know there is already a plugin for LMS to talk to > SubSonic and feed it - I assume it's acting like a SubSonic player. > Does anyone know if there something to do this in the opposite > direction? i.e. something like a SubSonic plugin that can 'pull' from > LMS (?), or is there some other method that could achieve this I've > missed? > The idea would be to isolate the 2 products for security, firewalled to > only allow specific traffic between the to 'systems'
Yes, Ill look into using SSH as well but Ill have Tomate how that looks from a legal POV. Encryption is a PITA on the app stores, Ill have to see what Apple supports for tunnels and OS-Level key handling and what this means for the US Govt, reporting requirements which are already a bit annoying today even though I just use SSL. The problem with just having a piece of software within your network handling security is that this piece of software is the open to all kinds of hacking activity from the internet and if it gets hacked youve got an open proxy within your network. This might be offered by whoever likes to offer it, Im not going to do it, its conceptually insecure so you have to do a LOT of work to stay up to date with it. Router vendors do that, its their job, I dont, Im not experienced enough in terms of security software. A cloud based solution has the advantage that you can use outgoing connections to reach it so even if its breached, its just the cloud server, not the customers networks that is affected. Its bad enough but you can shut it down and repair it and everything and you dont necessarily have to expose user data. Thats the only model _I_ would consider. --- learn more about iPeng, the iPhone and iPad remote for the Squeezebox and Logitech UE Smart Radio as well as iPeng Party, the free Party-App, at penguinlovesmusic.com *New: iPeng 9, the Universal App for iPhone, iPad and Apple Watch* ------------------------------------------------------------------------ pippin's Profile: http://forums.slimdevices.com/member.php?userid=13777 View this thread: http://forums.slimdevices.com/showthread.php?t=109877
_______________________________________________ Squeezecenter mailing list [email protected] http://lists.slimdevices.com/mailman/listinfo/squeezecenter
