Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.
Sign upQuestion: How visible are the hash and tracker? #654
Comments
This comment has been minimized.
This comment has been minimized.
|
See webtorrent/bittorrent-tracker#58 Basically I think if you setup a private tracker, with only private torrents (http://www.bittorrent.org/beps/bep_0027.html), it should be safe enough. Of course that wouldn't automatically add DRM to files and people could create a public torrent out of these files. |
This comment has been minimized.
This comment has been minimized.
|
How difficult would it be to obtain the source files if all rendering is done through MediaElement? My understanding is that using MediaElement decodes the torrent segments as they come in, but I could be wrong. |
This comment has been minimized.
This comment has been minimized.
|
rendering is separated from downloading. People can always use an other client to download files. |
This comment has been minimized.
This comment has been minimized.
|
Files are stored as they are rendered. With enough obfuscation, authentication, and the use of a private tracker, the ability to obtain a copy through a separate client can be reduced. What I'm wondering, however, is if files that are streamed into a MediaElement can be saved and redistributed. |
This comment has been minimized.
This comment has been minimized.
|
MediaElement supports DRM, so you can protect the content you play in a It's called EME: http://www.html5rocks.com/en/tutorials/eme/basics/ Netflix uses EME, for example. |
This comment has been minimized.
This comment has been minimized.
|
This thread has been automatically locked because it has not had recent activity. To discuss futher, please open a new issue. |
The meat of the question is this: if someone were to make a website hosting licensed or premium content, how difficult would it be for someone to find a "direct link" to it by retrieving the hash and tracker and sharing an instant.io link to unprivileged users?
Specifically, is this something that is easy to do? Are there precautions that must be taken when designing such a system, and what would those be? Are there any deficiencies in the WebTorrent infrastructure that could allow for this information to be compromised? It doesn't matter nearly as much when dealing with test files, CC-licensed media, and other essentially penalty-free media files, but if DMCA were to get involved, this is important to know and protect against.