From: "Wujian(Chin)" <wujian2@huawei.com>
To: FFmpeg development discussions and patches <ffmpeg-devel@ffmpeg.org>
Subject: [FFmpeg-devel] 答复: [PATCH] fftools/ffmpeg_ffplay_ffprobe_cmdutils: add -safe to replace the user name and password in the protocol address
Date: Mon, 19 Dec 2022 02:49:03 +0000
Message-ID: <4c18422fcd834f68ac80c9ee7761f363@huawei.com> (raw)
In-Reply-To: <CAB0OVGpUvJ4RnMUERxB-+81Zpk3-wUjp2nQq2o_v8As8=fAGJQ@mail.gmail.com>
>Am Sa., 17. Dez. 2022 um 08:36 Uhr schrieb Wujian(Chin) <wujian2@huawei.com>:
>>
>> The Protocol address may contain the user name and password. The ps -ef command may expose the plaintext.
>Please add a sentence explaining why this is an issue.
Other users can run the ps -ef command to view sensitive information such as the user name and password in the URL, which is insecure.
>> The -safe parameter option is added to replace the user name and password in the command line with the asterisk (*).
>>
>> Signed-off-by: wujian_nanjing <wujian2@huawei.com>
>> ---
>> doc/ffmpeg.texi | 7 +++++++
>> doc/ffplay.texi | 8 ++++++++
>> doc/ffprobe.texi | 7 +++++++
>> fftools/cmdutils.c | 47
>> +++++++++++++++++++++++++++++++++++++++++++----
>> fftools/cmdutils.h | 15 +++++++++++++++
>> fftools/ffmpeg.c | 16 +++++++++++++---
>> fftools/ffplay.c | 15 +++++++++++++--
>> fftools/ffprobe.c | 18 ++++++++++++++----
>> 8 files changed, 120 insertions(+), 13 deletions(-)
>>
>> diff --git a/doc/ffmpeg.texi b/doc/ffmpeg.texi index 0367930..e905542
>> 100644
>> --- a/doc/ffmpeg.texi
>> +++ b/doc/ffmpeg.texi
>> @@ -50,6 +50,13 @@ output files. Also do not mix options which belong
>> to different files. All options apply ONLY to the next input or output file and are reset between files.
>>
>> @itemize
>> +@item -safe
>> +The Protocol address may contain the user name and password. The ps -ef command may expose the plaintext.
>> +The -safe parameter option is added to replace the user name and password in the command line with the asterisk (*).
>> +@example
>> +ffmpeg -safe -i rtsp://username@password.xxxx.com
>I believe this should be example.com
>Carl Eugen
ffmpeg -i rtsp://username:password@url test.mp4
eg:ffmpeg -i rtsp://jack:WSX2344we@10.0.0.1:8554/stream/testqwee test.mp4
The user name and password are used for interaction with the video source server.
I'll modify the document description later.
Carl Eugen, thanks for your question.
_______________________________________________
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
https://ffmpeg.org/mailman/listinfo/ffmpeg-devel
To unsubscribe, visit link above, or email ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe".
_______________________________________________
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
https://ffmpeg.org/mailman/listinfo/ffmpeg-devel
To unsubscribe, visit link above, or email
ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe".
next prev parent reply other threads:[~2022-12-19 2:49 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-12-17 7:36 [FFmpeg-devel] " Wujian(Chin)
2022-12-18 0:45 ` Carl Eugen Hoyos
2022-12-19 2:49 ` Wujian(Chin) [this message]
2022-12-18 1:07 ` Timo Rothenpieler
2022-12-19 2:35 ` [FFmpeg-devel] 答复: " Wujian(Chin)
2022-12-19 3:34 ` [FFmpeg-devel] " "zhilizhao(赵志立)"
2022-12-19 6:50 ` [FFmpeg-devel] 答复: " Wujian(Chin)
2022-12-19 7:27 ` [FFmpeg-devel] " "zhilizhao(赵志立)"
2022-12-19 9:29 ` [FFmpeg-devel] 答复: " Wujian(Chin)
2022-12-19 10:09 ` Gyan Doshi
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=4c18422fcd834f68ac80c9ee7761f363@huawei.com \
--to=wujian2@huawei.com \
--cc=ffmpeg-devel@ffmpeg.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Git Inbox Mirror of the ffmpeg-devel mailing list - see https://ffmpeg.org/mailman/listinfo/ffmpeg-devel
This inbox may be cloned and mirrored by anyone:
git clone --mirror https://master.gitmailbox.com/ffmpegdev/0 ffmpegdev/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 ffmpegdev ffmpegdev/ https://master.gitmailbox.com/ffmpegdev \
ffmpegdev@gitmailbox.com
public-inbox-index ffmpegdev
Example config snippet for mirrors.
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git