similar to: Proposed openSSL usage improvements

Hi Geoff, On 11/13/2014 07:59 AM, Geoff Shang wrote: > On Thu, 13 Nov 2014, Roger H?gensen wrote: > >> Shoutcast v1, Shoutcast v2, Icecast-KH are all "compatible" with the >> way info is collected by StreamLicensing. > > It's not really clear to me what you're looking for in terms of > specific stats. There's an earlier thread, this message

On 2014-11-09 12:37, "Thomas B. R?cker" wrote: > On 11/02/2014 05:56 PM, "Thomas B. R?cker" wrote: >> - hard disable compression I assume this is only header compression (where the vulnerability was) and not content compression? -- Roger "Rescator" H?gensen. Freelancer - http://www.EmSai.net/

On 11/02/2014 05:56 PM, "Thomas B. R?cker" wrote: > Hi everyone, > > Prompted by the fact that addressing some of the recent SSL problems > actually would benefit from also changing things on how openSSL is used > (not just updating the library), I started looking into some improvements. > > The tracking ticket is: > https://trac.xiph.org/ticket/2070 > > To

On 04/20/2015 05:47 AM, Ralph Giles wrote: > On 19/04/15 08:15 PM, "Thomas B. R?cker" wrote: > >> If anyone happens to know about proven secure settings, just like the >> Mozilla labs settings for server side, please let us know. > You mean like https://wiki.mozilla.org/Security/Server_Side_TLS ? Yes, that's what we used for the Icecast server default cipher

Hi, as some of you might know Philipp has been working hard on adding TLS support to libshout, and a few other things. Originally we were planning to publish a beta or snapshot today, but we didn't manage to agree on a openssl client side cipher list yet. If anyone happens to know about proven secure settings, just like the Mozilla labs settings for server side, please let us know. We want

I have the following two settings in my "10-ssl.conf" file # SSL protocols to use ssl_protocols = !SSLv2 # SSL ciphers to use ssl_cipher_list = ALL:!LOW:!SSLv2:!EXP:!aNULL I have seen different configurations while Googling. I am wondering what the consensus is for the best settings for these two items. What do the developers recommend? Thanks! -- Jerry

Consider this a Ticket for Icecast 2.4 ******************************************************************************** If you look at {{{ admin/stats.xml }}} on a Icecast-KH server (default setup) and an Icecast 2.4 server (default setup) the following is one of the things that the KH branch has as extra info. {{{ <listener id="3581"> <ID>3581</ID>

On 2014-11-13 09:16, "Thomas B. R?cker" wrote: > Hi Geoff, > > On 11/13/2014 07:59 AM, Geoff Shang wrote: >> On Thu, 13 Nov 2014, Roger H?gensen wrote: >> >>> Shoutcast v1, Shoutcast v2, Icecast-KH are all "compatible" with the >>> way info is collected by StreamLicensing. >> It's not really clear to me what you're looking

Hi. Is it possible (legally) to stream MP3s on Icecast that have been encoded with LAME encoder (http://lame.sourceforge.net/license.txt)? So if a composer writes a track, then saves in MP3 with LAME, and wants to distribute with Icecast server, is it legal? Must he get license for MP3 (http://mp3licensing.com/royalty/emd.html) and pay any royalties for MP3 DISTRIBUTING or STREAMING as it stated

> Intel: > rpm -Uvh ftp://ftp.redhat.com/updates/4.0/i386/util-linux-2.5-29.i386.rpm > > Alpha: > rpm -Uvh ftp://ftp.redhat.com/updates/4.0/axp/util-linux-2.5-29.axp.rpm > > SPARC: > rpm -Uvh ftp://ftp.redhat.com/updates/4.0/sparc/util-linux-2.5-29.sparc.rpm > > All of these packages have been signed with Red Hat''s PGP key. But when you do this,

On 26 April 2017 at 13:16, Steven Tardy <sjt5atra at gmail.com> wrote: > >> On Apr 26, 2017, at 2:58 AM, Nicolas Kovacs <info at microlinux.fr> wrote: >> >> The site is rated "C" > > The RHEL/CentOS out-of-the-box apache tls is a little old but operational. This Mozilla resource is excellent for getting apache tls config up-to-date. > >

On 2015-04-26 18:15, Philipp Schafft wrote: > I tested with both Mozilla's 'Modern' and 'Intermediate' list. Both > work well with all versions of Icecast (official) as well as current -kh. > In that case my suggestion is for libshout to only focus on using the Modern list then as it explicitly excludes DES and RC4 and MD5. While HMAC-MD5 (for some password uses)

Hi, I'm currently experimenting with a public server running CentOS 7. I have half a dozen production servers all running Slackware Linux, and I intend to progressively migrate them to CentOS, for a host of reasons (support cycle, package availability, SELinux, etc.) But before doing that, I have to figure out a few things that work differently under CentOS. Apache and SSL behave quite

Hi list, I'm configuring apache with https and I've a question about sslv3 deactivation. Running "openssl ciphers -v" I get a list of cypher suite of openssl like: ECDH-RSA-AES128-GCM-SHA256 TLSv1.2 Kx=ECDH/RSA Au=ECDH Enc=AESGCM(128) Mac=AEAD ......... Each lines report relative protocol. Disabling sslv3 with "SSLProtocol all -SSLv3" I can use cypher like:

(see forwarded mail further below) Shoutcast v1, Shoutcast v2, Icecast-KH are all "compatible" with the way info is collected by StreamLicensing. Some may wonder why bothering to humor StreamLicensig, but the thing is that other licensing/royalty collectors did it the same way. StreamLicensing are now sadly the only ones that cater to small independent station that do not wish to be

Il 23/02/2015 17:06, "Thomas B. R?cker" ha scritto: > OK, that's from the Icecast side an easy situation. really thank you very much! I will make this operation tomorrow, but it seems easy. Still thanks.

Hi Thomas, El 18/12/2014 22:25, Thomas B. R?cker <thomas at ruecker.fi> escribi?: > > On 12/18/2014 08:54 PM, Xabier Oneca -- xOneca wrote: >> >> Hello, Thomas, >> >> El 18/12/2014 21:35, Thomas B. R?cker <thomas at ruecker.fi> escribi?: >> > >> > On 12/18/2014 08:29 PM, Xabier Oneca -- xOneca wrote: >> > > >> > >

Yes. I'm running The 2.3.99.3 win32 version. And if you can to provide the " mime.types " and " crossdomain.xml " files by yourself it will be great. TNX! -----Original Message----- From: "Thomas B. R?cker" [mailto:thomas at ruecker.fi] Sent: Tuesday, October 08, 2013 5:58 PM To: icecast-dev at xiph.org Cc: Yaniv Sharon Subject: Re: [Icecast-dev]

Done that and all works... Thanks. and I could still use my old config file with all of my settings in it? Because that is what I'm still using now. On 2/25/2015 12:22 PM, "Thomas B. R?cker" wrote: > On 02/25/2015 07:17 PM, Jonathan wrote: >> I will send you the errors first and then the modified script. >> >> Adding official Icecast repository for Ubuntu

On Sun, Jul 08, 2012 at 12:15:52AM +0300, R?cker Thomas wrote: > On 07/07/12 23:54, ohio?fm wrote: > > Hello! When will the 2.3.3 update get kicked over to apt-get? Also, > That's up to the debian maintainers of icecast not us. > Please ask them. I have done so myself (see debian bug 652663), > but not received an update for a while. Use the source: deb