My provider told me to switch from smarters to this app, from a third party APK linked on a uploader site. So lots of bells ringing, but also there to hardcode in the server URL so noone can see it without wifi sniffing. The app quality isnt great, but at least its working most of the time.
Is this now the new normal?
Allot of providers are being leaked I think that's why. But they need to work on there servers and more encrypting the url system needs to be flawless.
I have been researching and working on my own iptvserver. What I have noticed best way to secure your iptv subscription is to IP block every other connection only yours but that means you cant use it outside your home.
I think that is the reason why they hardcode there IP in a apk what btw you can easily grab from the app...
Umm, haven't they ever heard of tcpdump? It's also trivial to get it from the system or package. It's probably in xml. Give me a link to the app and I'll just do it for you.
You can run netstat on an Android box. You can run an Android emulator and do it that way. You can have your router do it. People like this really annoy me. This is not security. Anyone capable of causing them the slightest trouble will be able to get the address. The mind boggles.
There's a really simple way to get your credentials so all these provider shenanigans are easily defeated: just open any channel in your provider's app with mx player as external player, go to settings > tools > properties and under file path you will see server url and port along with your username/password. Boom, done and hardly rocket science.