We have had a java/actionscript programmer who did our coding but unfrotunately is on extended leave. We found some useful information in wowza to check things like this:
What we found was in the REFERER section of the XML someone was coming in not using our .swf and in fact i have no idea what file they were using becuase the referer shows as UNKNOWN. My question
is how that this be that we would not be able to detect the referrer?
The bigger problem is that we had left the spot on allowdomains in applicaton.xml blank and were SUPPOSED to be controlling access (referrer had to be from our .swf) from our .jar file and application, at least that is what i thought.
the .jar file application manages free vod and pay per minute and membership streaming. In the PPM section someone is connecting and if they know the name of the movie they just completely bypass our entire application. What is strange is even if the get past the referrer issue the system should be checking the username, allocating and deducting minutes, etc and it seems these guys just connected and bypassed everything. This could be a hole in our .jar code i guess. but still it seems like there is something else.
So what we did was add our domain to the allowdomain part in the /conf/appname/application.xml file and that SEEMS to have worked. Now when they come in we see the connection in the logs and immeidately it gets rejected.
So i was just wanting to know about the UNKNOWN referrer and also if there is anything documention wise about how we can check our application to see if we can find out how exatly thes guys seem to be bypassing out entire application. We hvae a java console that shows the command of what each user is doing and these guys do not show up in the console anywhere except for one weird message:
INFO session connect-pending 184.108.40.206 -
ERROR server comment - invoke(onConnect): java.lang.NumberFormatException: null: java.lang.Integer.parseInt(Integer.java:417)
at sun.reflect.GeneratedMethodAccessor8.invoke(Unknown Source)
at com.wowza.wms.module.ModuleFunction.invoke(Unknown Source)
at com.wowza.wms.module.ModuleFunctions.invokeSpecial(Unknown Source)
at com.wowza.wms.module.ModuleFunctions.onConnect(Unknown Source)
at com.wowza.wms.module.ModuleConnect.connect(Unknown Source)
at com.wowza.wms.request.RequestProcessFunctions.processFunctions(Unknown Source)
at com.wowza.wms.request.RTMPRequestAdapter.service(Unknown Source)
at com.wowza.wms.server.ServerHandler.serviceRequest(Unknown Source)
at com.wowza.wms.server.ServerHandler.handleMessageReceived(Unknown Source)
at com.wowza.wms.server.ServerHandler.messageReceived(Unknown Source)
at com.wowza.wms.server.ServerHandlerThreadedSession.run(Unknown Source)
at java.lang.Thread.run(Thread.java:662)4:18 PM 4/6/2012
and then they are allowed to play anything they want for as long as they want. I am wondering if there is something else about the config that is OPEN that is allowing them to bypass or connect in some other way?