dragon2611 27 Posted January 3, 2016 Share Posted January 3, 2016 (edited) Noticed when Emby phones home to presumably validate the license/supporter status and get the list of packages it's over plain old HTTP and thus can be subjected to interception, also looks like it goes via cloudflare. Also any reason the developers need to know the number of users on my server? I'm not so bothered by the other params, but localusers, guests and linkedusers are sent in plain-text inthe HTTP post. Please use HTTPS both from the emby server to CF and then CF to the origin servers. Edited January 3, 2016 by dragon2611 Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now