RetouchPRO

Go Back   RetouchPRO > Tools > Software
Register Blogs FAQ Site Nav Search Today's Posts Mark Forums Read


Software Photoshop, Lightroom, Paintshop Pro, Painter, etc., and all their various plugins. Of course, you can also discuss all other programs, as well.

Flash MX image protection project

Reply
 
Thread Tools
  #11  
Old 02-11-2006, 07:13 PM
Frank Lopes's Avatar
Frank Lopes Frank Lopes is offline
Senior Member
 
Join Date: Nov 2005
Location: Northern Hemisphere
Posts: 889
Blog Entries: 27
The fact Sir, is that it does NOT work.
It took me 10 minutes to get it.
Here is the URL:
http://www.chrishoggy.pwp.blueyonder...oneyouwant.jpg


Quote:
Originally Posted by chrishoggy
get/grab/hotlink to, or what ever. So it proves the method works
Reply With Quote top
  #12  
Old 02-12-2006, 02:09 AM
chrishoggy's Avatar
chrishoggy chrishoggy is offline
Senior Member
 
Join Date: Dec 2004
Location: Yorkshire
Posts: 578
Blog Entries: 1
You did it via common folder name, thats after you got it from the swf. And you received 6 url 404 errors when trying.
/test/thisistheoneyouwant.jp HTTP/1.1" 404
/images/thisistheoneyouwant.jp HTTP/1.1" 404
/test/imagebase/thisistheoneyouwant.jpg HTTP/1.1" 404
/imagebase/thisistheoneyouwant.jpg HTTP/1.1" 404
/thisistheoneyouwant.jpg HTTP/1.1" 404
/thisisthesmall.jpg HTTP/1.1" 404
Quote:
Here is a quick example with low security and no folder lockdown
I did say that, did I not?
Quote:
The fact Sir, is that it does NOT work
These are supposed to be constructive comments?
2 simple steps that will be in the final template would have stopped that. What would you have done if the files were named thisistheoneyouwant.wxyz and the folder they were in was server side access only?

Last edited by chrishoggy; 02-12-2006 at 03:54 AM.
Reply With Quote top
  #13  
Old 02-12-2006, 07:06 AM
Frank Lopes's Avatar
Frank Lopes Frank Lopes is offline
Senior Member
 
Join Date: Nov 2005
Location: Northern Hemisphere
Posts: 889
Blog Entries: 27
It took me several steps because I made a mistake typing the URL.
I typed "thisistheoneyouwant.jp" instead of "thisistheoneyouwant.jpg"

Regarding the comments, they were just my opinion. I still think what you are doing is a valiant and creative effort but only from a coding perspective.

I did decompile the swf file and that is how I had access to the image name. I do realize 99% of the users would not be able to do it either because they don't know how or don't think the effort is worth it.

Regarding renaming the image "thisistheoneyouwant.wxyz", I don't think it will work. I will download the "wxyz " file and just rename it locally to "jpg".

If you still want to pursue this idea, look into the possibility, as you mentioned, of putting the big image outside the web server folder structure. I don't know if Flash allows for that but it is a possibility. This could be also be augmented with a simple check from the web server: if the request does not come from the local system, don't serve the image.

I think the idea of having a magnifier glass is an interesting idea. I just don't know how well that will work with someone that wants to see the overall picture. Sure, one gets to see all of the picture but not all at once, and, in my opinion that is a big problem. If you think your visitors will not mind, then, by all means, go at it.

One final point:

One of the reasons why I think this was a very creative approach is due to the fact that you allow users to see portions of "the big picture", even a VERY large hi res picture (that could be many Mb in size...), without having the picture transferred to the browser. All it comes to the browser is a tiny 6kb file. This "trick" is, I think, worth exploring more for other uses. Just not this one.

Having said all of that, remember: if there is a will there is a way and what I did, should not be seen as a statememt on your level of security but more a comment on Flash. It was a demonstration that, via the web, just about anything is possible. It was, from my perspective, simply an academic exercise.

Quote:
Originally Posted by chrishoggy
You did it via common folder name, thats after you got it
...
were in was server side access only?
Reply With Quote top
  #14  
Old 02-12-2006, 07:58 AM
chrishoggy's Avatar
chrishoggy chrishoggy is offline
Senior Member
 
Join Date: Dec 2004
Location: Yorkshire
Posts: 578
Blog Entries: 1
Yes decompiling is one of the easy ways round it, but that is yet another hole that will be blocked, by encrypting the swf scripts. As you will have seen there was no protection on this item at all (except standard import protection). It is just a flash effect that has been modified to show before and after on a roll over But saying that, it has made life difficult for the 20+ people who have been trying like mad to guess/work out where the files are (404's all over my logs ). So a 1 in 20 success rate isn't bad for a method that has no security applied to it at all. Once the security is applied this should improve dramatically, making ripping of the image nearly impossible for the every day user/customer

Last edited by chrishoggy; 02-12-2006 at 09:24 AM.
Reply With Quote top
  #15  
Old 02-12-2006, 08:35 AM
Cameraken's Avatar
Cameraken Cameraken is offline
Senior Member
 
Join Date: Feb 2005
Location: Lancashire (UK)
Posts: 1,158
Hi Chris.

Well I was one of the people who tried and gave up. I think you idea has potential. I would not have a clue how to decompile a swf file (I could do some reading and then it may be easy) But I think this would stop the vast majority of people.

I did find the magnifying glass a little annoying. It’s difficult to get a feel for the whole picture. Maybe if the magnifier was not so strong and a little bigger then it would have been better.

Ken
Reply With Quote top
  #16  
Old 02-12-2006, 09:20 AM
chrishoggy's Avatar
chrishoggy chrishoggy is offline
Senior Member
 
Join Date: Dec 2004
Location: Yorkshire
Posts: 578
Blog Entries: 1
Ken, the magnifier will be bigger and I may do away with the handle, just leaving a thin outer rim. The magnifier seems a bit overpowering because the base image (800x573) is so small compaired to the restored (zoomed 1600x1146) image, thus doubling the zoom before it even started . Once finished the magnification will be between 1.5 and 2x, and shouldn't be as blocky, as both images will be the same size.

Frank, as you know, you got the image url via this script.
Quote:
loadMovie("thisisthesmall.jpg", "imagebase");
loadMovie("thisistheoneyouwant.jpg", "imagemagnifier.imagelarge");
_root.onEnterFrame = function() {
if (loaded == 2) {
scalefactor = imagemagnifier.imagelarge._width/imagebase._width;
gotoAndStop(2);
}
};
stop();
Where as the encrypted swf looks like this after decompiling
Quote:
Level #0: Frame=1 Label="!#p"
Movie Clip: Frame=1 Target="_level0.imagebase"
Shape:
Movie Clip: Frame=1 Target="_level0.imagemagnifier"
Shape: Mask
Movie Clip: Frame=1 Target="_level0.imagemagnifier.imagelarge"
Shape:
Movie Clip: Frame=1 Target="_level0.imagemagnifier.theglass"
Shape:
PS: I don't mind codes being posted etc, as final template will have a totally different layout structure
Reply With Quote top
  #17  
Old 02-12-2006, 09:53 AM
Frank Lopes's Avatar
Frank Lopes Frank Lopes is offline
Senior Member
 
Join Date: Nov 2005
Location: Northern Hemisphere
Posts: 889
Blog Entries: 27
Post the SWF file on the website and then I'll take a look. It just might work for you...

Quote:
Originally Posted by chrishoggy
Ken, the magnifier will be bigger and I may do away with
...
different layout structure

Last edited by Frank Lopes; 02-12-2006 at 10:02 AM.
Reply With Quote top
  #18  
Old 02-12-2006, 10:32 AM
chrishoggy's Avatar
chrishoggy chrishoggy is offline
Senior Member
 
Join Date: Dec 2004
Location: Yorkshire
Posts: 578
Blog Entries: 1
This is a standard encryption swf. same file as before, but with the image file names changed. Images don't exist, so won't show in flash. But the image details are there to be found, as they were before
http://www.chrishoggy.pwp.blueyonder.co.uk/test.swf

Just post the image file name
Reply With Quote top
  #19  
Old 02-12-2006, 10:43 AM
chrishoggy's Avatar
chrishoggy chrishoggy is offline
Senior Member
 
Join Date: Dec 2004
Location: Yorkshire
Posts: 578
Blog Entries: 1
PS: If your decompiler does give up the details, it would be useful to know what one you are using . The encrypting software claims to block many of the main ones on the market
Reply With Quote top
  #20  
Old 02-12-2006, 10:49 AM
Frank Lopes's Avatar
Frank Lopes Frank Lopes is offline
Senior Member
 
Join Date: Nov 2005
Location: Northern Hemisphere
Posts: 889
Blog Entries: 27
The files are canyoufindit.jpg and canyoufinditbig.jpg

Would you rather take this discussion offline? We might be boring others to death with such arcane subject.... :-)

Quote:
Originally Posted by chrishoggy
This is a standard encryption swf. same file as before, but
Just post the image file name

Last edited by Frank Lopes; 02-12-2006 at 11:01 AM.
Reply With Quote top
Reply

  RetouchPRO > Tools > Software


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
What resolution and PPI for a picture you want to visualize on a TV? HenZ Photo Retouching 4 08-31-2007 12:19 PM
Crocodile skin... therookie Photo Retouching 26 04-04-2007 02:28 PM
how to get this amazing look (heimo)? Faust Photo Retouching 25 08-17-2006 04:09 PM
Converting Color Image To Grayscale Ed_L Photo Retouching 7 09-27-2001 09:37 PM
maintaining image size in photoshop 6 when copying to a new image Chris W. Software 9 09-08-2001 10:27 PM


All times are GMT -6. The time now is 02:53 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2017, Jelsoft Enterprises Ltd.
SEO by vBSEO ©2011, Crawlability, Inc.
Copyright © 2016 Doug Nelson. All Rights Reserved