Most active commenters
  • jcalvinowens(3)

←back to thread

Yt-dlp: External JavaScript runtime now required for full YouTube support

(github.com)
810 points bertman | 11 comments | 12 Nov 25 10:12 UTC | HN request time: 0.539s | source | bottom
Show context
xeonmc ◴[12 Nov 25 12:31 UTC] No.45899355[source]
In ten years time YouTube will be entirely inaccessible from the browser as the iPad kids generation are used to doomscrolling the tablet app and Google feels confident enough to cut off the aging demographic.
replies(9): >>45899394 #>>45899462 #>>45899465 #>>45899525 #>>45899536 #>>45900001 #>>45900317 #>>45900441 #>>45900653 #
vachina ◴[12 Nov 25 12:52 UTC] No.45899536[source]
They’d need dedicated hardware to enforce any kind of effective DRM. Encrypted bitstream generated on the fly watchable only on L2 attested device.
replies(7): >>45899618 #>>45899734 #>>45899739 #>>45899807 #>>45900214 #>>45900945 #>>45902867 #
lloeki ◴[12 Nov 25 13:14 UTC] No.45899734[source]
Netflix is already there for 4k streams
replies(3): >>45899791 #>>45899833 #>>45900375 #
KeplerBoy ◴[12 Nov 25 13:20 UTC] No.45899791[source]
And it's an entirely useless effort. No idea how it is done but the internet is full 4k rips.
replies(2): >>45899965 #>>45901153 #
1. alex7o ◴[12 Nov 25 13:36 UTC] No.45899965[source]
They find devices that are easy to hack (and I mean rip and tear) and extract the decryption keys from each of them, from what I have heard cheap chinese tvs and set top boxes, they extract the keys from the chips (hardware hacking, heard some even use microscopes to read the keys by hand), and then use them to decrypt streams, I heard that they catch them pretty fast to they use like 1 device per season. This is why they use mostly stollen devices.
replies(4): >>45900054 #>>45900188 #>>45900498 #>>45901684 #
2. 13hunteo ◴[12 Nov 25 13:42 UTC] No.45900054[source]
Interesting - do you have any sources to read further?
replies(2): >>45900261 #>>45902692 #
3. gpderetta ◴[12 Nov 25 13:53 UTC] No.45900188[source]
The analog hole is real.
4. 47282847 ◴[12 Nov 25 13:59 UTC] No.45900261[source]
Search for widevine decrypt. You’ll find code and forums where at least some L3 (software) keys are publicly shared. For high resolution on some platforms, you need L1 keys, but as far as I understand the decryption process basically stays the same once you have a working key.

Random article: https://www.ismailzai.com/blog/picking-the-widevine-locks

Claimed to be L1 key leaks (probably all blacklisted by now): https://github.com/Mavrick102/WIDEVINE-CDM-L1-Giveaway

5. jcalvinowens ◴[12 Nov 25 14:18 UTC] No.45900498[source]
The really shitty thing is that vulnerable devices get blacklisted en masse, so all legitimate users get stuck with 480p video content on streaming services. The Nexus 5 got this treatment, as I understand it, because it was too easy to extract the keys.
replies(2): >>45903045 #>>45907282 #
6. alerighi ◴[12 Nov 25 15:54 UTC] No.45901684[source]
More easily in the past (I don't think if it's still true for 4K) you only needed an HDMI splitter to bypass HDCP copy protection.
7. sodality2 ◴[12 Nov 25 17:10 UTC] No.45902692[source]
You won't find a ton of up-to-date info that would let you do the same - the scene groups hold their methods closely specifically because of this cat-and-mouse game.
8. charcircuit ◴[12 Nov 25 17:34 UTC] No.45903045[source]
It provides a good incentive for manufacturers to invest into security for their devices.
replies(1): >>45903225 #
9. jcalvinowens ◴[12 Nov 25 17:48 UTC] No.45903225{3}[source]
No, it provides no incentive at all!

It's the users who suffer when this happens, not the manufacturers. The manufacturers couldn't care less, the money is already in the bank.

If the manufacturers were required to replace all the revoked devices at their cost, that would be a real incentive.

10. zelphirkalt ◴[12 Nov 25 21:51 UTC] No.45907282[source]
Not a Netflix user here: Are you saying that paying customers get cut off from higher video quality, that they are possibly paying for, and pressured into buying new devices? That shit should be illegal!
replies(1): >>45907434 #
11. jcalvinowens ◴[12 Nov 25 22:03 UTC] No.45907434{3}[source]
Yes, that's exactly what happens!