Home > AMFPHP, Flash Platform > Block StandAlone Player in AMFPHP

Block StandAlone Player in AMFPHP

January 20th, 2008
Goto comments Leave a comment

I have updated the AMFPHP to block the flash/flex ide player from being able to access the amfphp services if the gateway.php is configured for a production server.

AMFPHP download page

I just updated a release in svn and also put a new download up on sourceforge which enables this feature if the gateway.php is set to production will disable the StandAlone Player.

Files changed:
amfphp/core/amf/app/Gateway.php

Lines added 136-137 amfphp/gateway.php

Lines added 348-360 amfphp/core/amf/app/Gateway.php

AMFPHP, Flash Platform

  1. Ryan
    January 26th, 2008 at 20:59 | #1
    Reply | Quote

    I am new to AMFPHP. Why is it useful to block the StandAlone player?

  2. wadearnold
    January 27th, 2008 at 11:22 | #2
    Reply | Quote

    The standalone player can be used to attack known amfphp installations to try and expose the services. It just is another level of obscurity to keep un authorized connections to your services.

  1. No trackbacks yet.