Welcome to our forums! Please take a few moments to read through our Community Guidelines (also conveniently linked in the header at the top of each page). There, you'll find guidelines on conduct, tips on getting the help you may be searching for, and more!

Share Library with friends

fatbrainfatbrain Posts: 17Members
Hi

Is there some way I can share my library with my friends without giving them access to my filesystem (through /services/browse)?

Cheers,
fatbrain

Comments

  • RockStarRockStar Posts: 2,027Members, Plex Pass Plex Pass
    yea. howto is in the wiki
  • fatbrainfatbrain Posts: 17Members
    RockStar wrote:

    yea. howto is in the wiki


    Hi, I must be blind :( Can't find that information anywhere on the wiki.

    Could I nag you for an URL?

    Cheers,
    fatbrain
  • hkeylm@hotmail.comhkeylm@hotmail.com Posts: 841Validating ✭✭
    Depending on how you expect them to connect (local LAN, Internet) the "solution" will vary.
    I assume for now it's over the internet?
    Check THIS ONE as it'll explain the port forwarding business and THIS ONE on info for connecting with the Mac client...
  • fatbrainfatbrain Posts: 17Members
    hkeylm wrote:

    Depending on how you expect them to connect (local LAN, Internet) the "solution" will vary.
    I assume for now it's over the internet?
    Check THIS ONE as it'll explain the port forwarding business and THIS ONE on info for connecting with the Mac client...



    I fail to see how I can limit my friends from manually querying my PMS with urls like http://pms.server.com:32400/service/browse to see all my local harddrives and stuff.

    Did I miss something?

    Thanks for reply,
    fatbrain
  • hkeylm@hotmail.comhkeylm@hotmail.com Posts: 841Validating ✭✭
    I must admit that i am slightly irritated....

    To be of my knowledge - sure enough i might as well be wrong - all you can get to via PMS (and port 32400) is the Media Library (xml content) and the Media content you added to your sections (movies, shows, music).. I really can not see how one could get through to your disk - the above url produced file not found for me though...

    Sorry, maybe someone else can enlighten me
  • RockStarRockStar Posts: 2,027Members, Plex Pass Plex Pass
    hkeylm wrote:

    I must admit that i am slightly irritated....

    To be of my knowledge - sure enough i might as well be wrong - all you can get to via PMS (and port 32400) is the Media Library (xml content) and the Media content you added to your sections (movies, shows, music).. I really can not see how one could get through to your disk - the above url produced file not found for me though...

    Sorry, maybe someone else can enlighten me

    +1
  • fatbrainfatbrain Posts: 17Members
    edited April 2011
    hkeylm wrote:

    I must admit that i am slightly irritated....

    To be of my knowledge - sure enough i might as well be wrong - all you can get to via PMS (and port 32400) is the Media Library (xml content) and the Media content you added to your sections (movies, shows, music).. I really can not see how one could get through to your disk - the above url produced file not found for me though...

    Sorry, maybe someone else can enlighten me


    Ah, how stupid of me. I was doing the "friend-test" from a machine the same subnet, probably the reason I could see the /services urls.

    (Spelling error in my previous post, should have been /services not /service)

    I'll try reconfigure my wifi to use some other subnet.

    facepunch,
    Thanks! :)
  • fatbrainfatbrain Posts: 17Members
    fatbrain wrote:

    Ah, how stupid of me. I was doing the "friend-test" from a machine the same subnet, probably the reason I could see the /services urls.

    (Spelling error in my previous post, should have been /services not /service)

    I'll try reconfigure my wifi to use some other subnet.

    facepunch,
    Thanks! :)


    I could "sniff" my file-system from a different network as well (through /services/browse)... This is driving me mad. :'(

    Sigh,
    fatbrain
  • kylerwkylerw Posts: 317Members, Plex Pass Plex Pass
    I'm unable to 'sniff' anything when going to that URL - but I have authentication enabled... maybe a solution?

    also, if these are friends you're sharing with, why are you concerned about them accessing that information?
  • fatbrainfatbrain Posts: 17Members
    dirRtyjoe wrote:

    I'm unable to 'sniff' anything when going to that URL - but I have authentication enabled... maybe a solution?

    also, if these are friends you're sharing with, why are you concerned about them accessing that information?


    I also have authentication enabled, but through internet using my mini python-client I was able to grab that information from my media-server.

    Why I wouldn't want to share it? Really, I need to justify that?

    Because they have no business going through my file-system. Just because they are my friends doesn't mean I want them sniffing around looking at what folders or network drives I have attached to my computer.

    mini-python client,

    #!/usr/bin/env python
    import urllib2, hashlib, sys, getopt
    opts, args = getopt.getopt(sys.argv[1:], 'u:p:')
    def Sha1(str):
      return hashlib.sha1(str).hexdigest()
    def GetOpt(name, default=''):
      return (filter(lambda o: o[0] == name, opts) or ('', default))[0][-1]
    username = GetOpt('-u', 'Administrator')
    password = GetOpt('-p', 'defaultpassword')
    server = args[0] if len(args) else 'my.server.com'
    path = args[1] if len(args) else '/library/sections'
    sha1 = Sha1(username.lower() + Sha1(password))
    url = 'http://%s:32400%s' % (server, path)
    req = urllib2.Request(url, headers={'X-Plex-User': username, 'X-Plex-Pass': sha1})
    print urllib2.urlopen(req).read()
    


    ./pmsclient.py -u username -p password my.server.com /services/browse

    Cheers,
    fatbrain
  • hkeylm@hotmail.comhkeylm@hotmail.com Posts: 841Validating ✭✭
    Hi fatbrain,


    Did you say you have Secure Server access enabled?
    If so, your friends should not longer be able to use the /services/browse function -- unless of course you share the ssa credentials with them....
  • elanelan Sheriff of Plexville MauiPosts: 8,855Members, Plex Employee, Plex Pass, Plex Ninja Plex Employee
    fatbrain wrote:

    ./pmsclient.py -u username -p password my.server.com /services/browse


    Nice Python hacking :)
  • fatbrainfatbrain Posts: 17Members
    hkeylm wrote:

    Hi fatbrain,


    Did you say you have Secure Server access enabled?
    If so, your friends should not longer be able to use the /services/browse function -- unless of course you share the ssa credentials with them....


    Ah, yes. I have secured my server with the username & password option.

    But I need to give the credentials to my friends in order for them to access /library/sections. I would like to create a user with access to only the /library and not the /services channel.

    I don't think PMS supports that at the moment :S. Now I play the waiting game!

    Cheers,
    fatbrain
  • fatbrainfatbrain Posts: 17Members
    elan wrote:

    Nice Python hacking :)


    Thanks, I do aim to please ;)

    Cheers,
    fatbrain
  • hkeylm@hotmail.comhkeylm@hotmail.com Posts: 841Validating ✭✭
    hey fatbrain,

    It truly doesn't seem as if Plex permits you to block this right now. My gut feel is that this is an un-intentional "feature" ;-)

    unless you would maintain the credentials on your friends phones yourself, there not that much you could do about it right now. Especially if you have clever folks around you that can do similar nice phyton hacks :)
    Only thing that comes to mind is to maybe run PMS under a restricted User account on your Mac that only has access to the Media FIles ... You could leave it logged in while using another account on the foreground I think....
    At least that way you have a little more protection.
  • hippojayhippojay Posts: 958Members, Plex Pass Plex Pass
    fatbrain wrote:

    Ah, yes. I have secured my server with the username & password option.

    But I need to give the credentials to my friends in order for them to access /library/sections. I would like to create a user with access to only the /library and not the /services channel.


    In order for you friends to access services, they would also need to construct a similar python ( or some other) type of client. iOS, plex and other don't give access to that information. Even a web browser would be difficult as there is a need to send the user/pass headers. So casual access is not possible.

    Whilst I think that externally this information should be blocked (to remove all doubt) you might also want to question how far someone would need to go to get this info and what sort of friends you have if you believe this may be the case.
  • RockStarRockStar Posts: 2,027Members, Plex Pass Plex Pass
    hippojay wrote:

    Whilst I think that externally this information should be blocked (to remove all doubt) you might also want to question how far someone would need to go to get this info and what sort of friends you have if you believe this may be the case.

    no ****! id just exclude these "friends" from the server. anyhow, great find. hopefully it will make plex more secure
Sign In or Register to comment.