Simple code obfuscation
in [General]
|
Prev: pecl install geoip doesnt work. Warning: opendir(/var/tmp/pear-build-root/install-geoip-1.0.7//var/www/pear): failed to open dir: No such file or directory in PEAR/Builder.php on line188
Next: poll: howto do informative error handling without the fatalities
From: =?UTF-8?B?15PXoNeZ15DXnCDXk9eg15XXnw==?= on 10 Feb 2010 09:33 Try http://www.seekposition.net/php-encode Ignore everything, just enter the code and check if it still works. On 2/8/10, Brian Dunning <brian(a)briandunning.com> wrote: > Hey all - > > I'm selling a custom PHP solution to FileMaker users. It uses FileMaker's > PHP API, so everyone who has FileMaker Server is already set up to use it, > but very few of them have any knowledge of how to set up a server or do > anything PHP related. But I do want to add some level of code obfuscation to > prevent them from making simple changes to my code that allow them to exceed > the privileges they've purchased. > > I've looked at custom code encryption services like Ioncube and phpCipher, > but in my estimation, deploying the needed server-side code for these is > going to be beyond the capabilities of a large segment of my customers. I > would rather have a few customers cheat me than offer a product that most > customers are unable to figure out how to run. > > So I was thinking of doing something like base64_encoding the crucial chunk > of my code (maybe 20 lines worth) and using > eval(base64_decode($that_content)) to run it. I figure that will scare away > most of the customers who might be able to edit my code. Can anyone suggest > something that goes one better? > > - Brian > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php > > -- Sent from my mobile device Use ROT26 for best security
From: Richard Quadling on 10 Feb 2010 11:48 On 10 February 2010 14:33, ×× ××× ×× ×× <danondaniel(a)gmail.com> wrote: > Sent from my mobile device > > Use ROT26 for best security I can't read a word of that! -- ----- Richard Quadling "Standing on the shoulders of some very clever giants!" EE : http://www.experts-exchange.com/M_248814.html EE4Free : http://www.experts-exchange.com/becomeAnExpert.jsp Zend Certified Engineer : http://zend.com/zce.php?c=ZEND002498&r=213474731 ZOPA : http://uk.zopa.com/member/RQuadling
From: =?UTF-8?B?15PXoNeZ15DXnCDXk9eg15XXnw==?= on 10 Feb 2010 13:58 That meaning the message? I'll re-send it now: Try http://www.seekposition.net/php-encode Ignore everything, just enter the code and check if the code still works. On Wed, Feb 10, 2010 at 6:48 PM, Richard Quadling <rquadling(a)googlemail.com>wrote: > On 10 February 2010 14:33, ×× ××× ×× ×× <danondaniel(a)gmail.com> wrote: > > Sent from my mobile device > > > > Use ROT26 for best security > > I can't read a word of that! > > > -- > ----- > Richard Quadling > "Standing on the shoulders of some very clever giants!" > EE : http://www.experts-exchange.com/M_248814.html > EE4Free : http://www.experts-exchange.com/becomeAnExpert.jsp > Zend Certified Engineer : http://zend.com/zce.php?c=ZEND002498&r=213474731 > ZOPA : http://uk.zopa.com/member/RQuadling > -- Use ROT26 for best security
From: John Black on 10 Feb 2010 15:22
Brian Dunning wrote: > .... But I do want to add some level of code obfuscation to prevent them > from making simple changes to my code that allow them to exceed the > privileges they've purchased..... I have used PHP Processor 1.5 from http://gridinsoft.com for this. Back when I was looking around it was the only offering which did not require me to modify my source code and it does not require the clients to install anything. This one is not free but it is very reasonably priced. It is also a PHP editor but I never used it for that. You can simply import a fully project, I used to run a project with multiple subdirs and about 1.5MB of source code through it. It can remove all newline and linefeed chars, replace $variable with $asdFDG and do the same with functions and classes. You can exclude global variables, functions or classes by using a simple checkbox list. This program has performed very well but I stopped using it because sometimes it clashed with pages containing javascript, PHP and html so I would have to test everything twice. Using it on pure PHP scripts should work flawless and I will probably start using this program again for my license handling class. I know that this tool is available for "free" on some websites but make sure you purchase the latest edition. The program had a bug when generating random variables or function names. I reported it and they fixed it, so get the patched version or you will not be very happy :) -- John RIP jacky.network-technologies.org [root(a)jacky /]# uptime 05:09:18 up 607 days, 23:17 |