Difference between revisions of "User:Inara Pey/Media Filter"

From Second Life Wiki
Jump to navigation Jump to search
 
Line 153: Line 153:
* Phoenix Viewer: PHOENIX -> MEDIA LISTS
* Phoenix Viewer: PHOENIX -> MEDIA LISTS
* Dolphin Viewer: ME -> MY MEDIA FILTERS
* Dolphin Viewer: ME -> MY MEDIA FILTERS
* Firestorm Viewer: AVATAR -> PREFERENCES -> SOUND & MEDIA -> click EDIT LISTS


The media filter editing window, similar to the one show below is displayed:
The media filter editing window, similar to the one show below is displayed:

Latest revision as of 15:08, 23 March 2011

Introduction

Second Life has rich media content: music and videos can be enjoyed in-world through the media players included in the Second Life Viewer.

While the media capabilities in the Viewer are very flexible, it is important to remember that they can also be used by others to capture information about yourself without your knowledge – and that this information can easily be transmitted to databases outside of Second Life and outside of Linden Lab’s control.

Because of this, the majority of Second Life Viewers now include a Media Filter. The Media Filter is designed to help protect you from malicious media streams that might be used to gather information about you as you travel around Second Life (such as capturing your IP address alongside your avatar details in an attempt to identify any alts you may have and link them to you).

It has been specifically designed to warn you when your Viewer has been asked to accept an incoming media stream request, allowing you to determine whether or not you wish to receive the stream before it connects to your Viewer.

This tutorial is designed to provide an overview on how to use the Media Filter, and to provide guidelines on what to look for in suspicious media streams.

Applicable Viewers

This article applies to the following Viewers:

Viewer 1.x Viewer 2.x
Cool VL Viewer 1.25.0.25 (or greater) Dolphin Viewer 2 2.5.2 (or greater)
Dolphin Viewer 1.5.48 (or greater) Firestorm Viewer 2.4.2.14918 (or greater)
Imprudence Experimental 2011.03.20 (or greater)
Phoenix Viewer 1.5.2.977 (or greater)


Media and Privacy FAQ

What is media streaming?

  • Media streaming is a means by which music and video can be directed to your Viewer for your enjoyment from sources outside of Second Life
  • The music you might hear while visiting a store, the music you hear at a live event, and videos you watch on an in-world TV screen – all these are sent to your Viewer via a media stream that can originate anywhere outside of Second Life
  • The same is true for any websites, videos and so on shown through the Media On A Prim function within Viewer 2.

Why is this a risk?

  • Because there is no absolute way of knowing where such a media stream originates. Almost all streams offered in Second Life are perfectly legitimate and offer *no* threat to you
  • However, because of the way Second Life operates, it *is* possible for people to abuse the system and use a media stream in an attempt to gain information on you without you being aware of it.

What information are they after?

  • So far the main attempts in misusing media streams have been to obtain the IP Address – the digital “identity” assigned to your computer – that allows it to communicate over the Internet. In the same sense that someone needs your mailing address to send you a letter, a remote computer needs your IP address to communicate with your computer.

Why do they want this?

  • For a variety of reasons.Some believe that linking IP addresses with avatar accounts allows them to link accounts to one another – identify if you have any SL alts and who they are. Others might use the IP information to try and identify where in the real world you reside; there are many reasons for the unscrupulous to gather and link such information.

Is linking IP addresses accurate?

  • To be honest no; for some it could be more accurate than others. IP addresses work in a number of ways, and this makes such systems questionable in their accuracy
  • However, the fact that people are prepared to go to these lengths means it is advisable for you to take steps to be aware of what your computer is being asked to do.

Does using the Media Filter automatically protect me?

  • No. It acts as an advisor, letting you see what is going to on with your computer when it receives a request to stream media to you. It helps you evaluate whether or not you should accept a request from a media service located outside of Second Life
  • To further help you make a decision, this article includes some guidelines on how to identify potentially malicious media requests
  • But the final choice of what to do remains with *you*. At the end of the day, nothing can be 100% “safe” in Second Life. However, the Media Filter will help you make informed choices and help you to protect yourself.

Enabling the Filter

By default, the Media Filter may be active from the moment you install a Viewer that includes it (you may even see it display a pop-up the first time you log-in to a Viewer that uses it; see Using the Filter below). However, should you find you need to turn it on, or if you wish to ensure it is active, follow the instructions below.

  • Locate the Preferences tab that contains your Media Filter on / off option:
    • Cool VL Viewer: EDIT -> PREFERENCES -> COOL FEATURES -> MISCELLANEOUS
    • Dolphin Viewer: EDIT -> PREFERENCES -> ADVANCED -> MISCELLANEOUS
    • Imprudence Viewer: The Media Filter is automatically enabled; no action required.
    • Phoenix Viewer: EDIT -> PREFERENCES -> AUDIO & VIDEO
    • Dolphin Viewer 2: ME -> PREFERENCES -> SOUND & MEDIA
    • Firestorm Viewer: The media filter is enabled automatically (AVATAR -> PREFERENCES -> SOUND & MEDIA to disable)
  • Make sure the ENABLE MEDIA FILTER (INCREASED SECURITY)/MEDIA FILTER (INCREASED SECURITY) is checked.
  • If it is, take no action and close the Preferences window
  • If it is not, check it and click APPLY and close the Preferences window.

Using the Filter

* Note: The Media Filter only works if you have media enabled. If you have previously disabled media but now wish to use the Filter, you will have to re-enable media first.

The Media filter activates in two ways:

  • Automatically, on encountering a media stream trying to connect to your Viewer
  • When you click on the music / media PLAY button, and media is available.

Either way, a pop-up is displayed on your screen

Media-patch.jpg

Image from from Dolphin Viewer 2.5.2

The pop-up displays the URL of the media stream and a series of buttons:

  • ALLOW: allow your Viewer to connect to the stream. You should only click on this if you feel the media stream does not harbour a potential threat (see What Do I Block?“, below).
  • WHITELIST: if you recognise the media stream as being from a safe source, click on this button to add the stream to your Viewer’s Whitelist. This will prevent the pop-up appearing when you encounter the stream in the future
  • BLACKLIST: use this option to block the stream and add it to your Viewer’s Blacklist. The stream will be blocked automatically whenever it is encountered in future, without generating the pop-up
  • DENY: if you are unsure about the stream, and do not want to risk exposure, click this. The stream will be blocked for the duration of your stay.

Editing Your Lists

There may be times when you accidentally add a stream to your Blacklist or Whitelist and wish to remove it. Here’s how:

Bring up your Media Filter Editor:

  • Dolphin and Cool VL Viewers: VIEW -> MEDIA FILTER
  • Phoenix Viewer: PHOENIX -> MEDIA LISTS
  • Dolphin Viewer: ME -> MY MEDIA FILTERS
  • Firestorm Viewer: AVATAR -> PREFERENCES -> SOUND & MEDIA -> click EDIT LISTS

The media filter editing window, similar to the one show below is displayed:

Media-patch-4.jpg

Image from Dolphin Viewer 2

Any URLs you have listed will be displayed in the left or right pane of the window.

To remove a URL from either list, click on the URL to highlight it, then click on the respective REMOVE button under the list.

To manually add URL to either list:

  1. Click on the ADD button under the required list
  2. The New Domain box is opened
  3. Enter the URL you wish to add to your list and click the ADD button to the right of the box
  4. The domain will be added to the list.

Some Viewers allow you to completely clear both lists using the CLEAR LISTS button. Where this is the case, remember that both the Whitelist and the Blacklist will be cleared.

A short video (specific to the Cool VL Viewer) has also been produced, that provides a basic overview of the Media Filter.

Knowing What to Block

One of the issues of the new patch, of course, is knowing precisely what might be an attempt to harvest information from you. So what should you be looking out for? The following hints have been provided by Psyke Phaeton, and are designed to help you understand how to identify what might be undesirable media requests.

Media URL Notes
http: //domain.name:8000/music This appears to be a genuine music URL. It doesn't contain any extra characters that look like they might be hiding extra data about you. You could ACCEPT this request.
http: //domain.name:8000/music?id=123 Is 123 a way of tracking you, or is it a music selection from a larger collection? Unless you trust the venue, might be best to DENY it.
http: //domain.name:8000/music?m=2342hdd922adattaaaa8syd7stdfssfff&x=122dgf What is that data on the end of these two URLs? The long strings of letters and symbols might be obscuring data about you. The longer the sequence of the URL after the first single / the more information it is potentially sending and therefore the more suspicious you should become. These should most likely be denied.
http: //domain.name:8000/music/2342hdd922adattaaaa8syd7stdfssfff
http: //www.youtube.com/watch?v=NLmsiaN5dZM&feature=topvideos This makes sense: the media request is to play YouTube video NLmsiaN5dZM selected via the "topvideos" feature; it can be ACCEPTed

So, when it comes to evaluating media stream URLs, the two questions you should ask yourself are:

  1. Is the length of the URL suspiciously long and
  2. Does data in the URL make sense or does it look suspiciously obscured.

Practical Examples

Media patch-2.jpg

This is the URL of a very popular media stream in Second Life. As such it is safe to ACCEPT.

Media patch-3.jpg

This is altogether more suspicious. The long string at the end could be hiding data on you. Best to DENY it.

With thanks to Pyske Phaeton for providing the information on suspicious media requests and special thanks to Sione Lumo for developing the Viewer Media Patch.