homepage Welcome to WebmasterWorld Guest from 107.20.131.154
register, free tools, login, search, subscribe, help, library, announcements, recent posts, open posts,
Pubcon Platinum Sponsor
Home / Forums Index / Code, Content, and Presentation / Perl Server Side CGI Scripting
Forum Library, Charter, Moderators: coopster & jatar k & phranque

Perl Server Side CGI Scripting Forum

    
Encrypting Perl Source Codes
lindajames




msg:438198
 2:35 pm on Jul 3, 2003 (gmt 0)

Hi,

I have written this peace of code that quiet alot of people have shown interest in purchasing. However, I fear that once someone pays for it they will start distributing it and editing the code etc...

I've heared that perl source codes can be encrypted. Can anyone please tell me how i can do this? there are certain variables that need to be changable in the code. So, the only thing i want to encrypt is the actual code (NOT THE VARIABLES)

Any suggestions would be appreciated.

Cheers
Linda

 

dive into perl




msg:438199
 2:58 pm on Jul 3, 2003 (gmt 0)

Hi Linda,

The best you can do is obfuscate your code, but even the best obfuscator can be turned back to plain perl source code with modules like Deobfuscate.pm [search.cpan.org] and Tidy Perl.

So I wouldn't bother, just write a good license stating what can and can't be done with your code.

-dip

ShawnR




msg:438200
 11:12 am on Jul 4, 2003 (gmt 0)

Wow, Linda that is great! You've come a long way in your perl skills, by the sounds of it! Well done!

There are a number of perl compilers available for a variety of platforms. Just do a search. (Kind of goes against Larry Wall's principles 'though ;)

To solve the configurable variables thing, have the values read in from an external config file.

Shawn

lindajames




msg:438201
 6:19 pm on Jul 10, 2003 (gmt 0)

LOL Shawn, you make it sound as if i've become an expert. well... not really but i have learnt quiet alot and thanx again for all your help

Storyteller




msg:438202
 7:08 pm on Jul 18, 2003 (gmt 0)

Linda, Perl 5.8 can compile down to C code, which you can then compile to a regular binary. This is not officially guranteed to work in all cases, but I know a fairly sophisticated network app that has been "protected" this way and it seems to work well.

Brett_Tabke




msg:438203
 7:18 pm on Jul 18, 2003 (gmt 0)

mod filter...

ShawnR




msg:438204
 10:55 pm on Jul 18, 2003 (gmt 0)

"...mod filter..."

I'm not sure that will help in this case. Linda is trying to protect code that she distributes. Not code that is under her control on a webserver.

....Unless I am missing something

Shawn ;)

Brett_Tabke




msg:438205
 1:10 pm on Jul 20, 2003 (gmt 0)

There are commercial perl packages that require mod filter be installed.

ShawnR




msg:438206
 1:35 pm on Jul 20, 2003 (gmt 0)

Sorry Brett, pehaps I'm just slow, but I'm still not getting it... Can you or someone enlighten me. How can mod filter help hide your perl source from say a customer who you provide the source to, or from the ISP that supplies the server that the application resides on? I hope that doesn't come across as 'challenging'. I'm not meaning to contradict, just trying to understand how.

Shawn

StopSpam




msg:438207
 10:38 am on Jul 21, 2003 (gmt 0)

i thit a quick search with google and found these two apps;

they claim to encrypt source code
so its harder toread the pure coding ....

one perl encrypter cost $19.95 is pc program
www.worldwidecreations.com/perlcoder.htm

www.perlguardian.com/
the other is a perlscript cost $150 for few months ;-(
but has powerfull md5 encryption.

i agree a good user lisence is better then encryption.

[edited by: sugarkane at 7:35 pm (utc) on July 21, 2003]
[edit reason] Delinked URLs [/edit]

netcommr




msg:438208
 10:46 am on Jul 21, 2003 (gmt 0)

you could wait for perl6, has most of this built in... (compiled executables for dist., etc.)

StopSpam




msg:438209
 12:13 pm on Jul 21, 2003 (gmt 0)

could you explain how this works:

(compiled executables for dist., etc.)

it encrypts the scrips automaticly?
or just prints out converted coding to browser?

ShawnR




msg:438210
 1:30 pm on Jul 21, 2003 (gmt 0)

"...they claim to encrypt source code so its harder toread the pure coding ..."

I'd suggest a compiler rather than something that mangles your code to obfuscate it. The advantages of a compiler are speed of execution and better resiliance to being hacked. The disadvantage is cross-platform portability. I mentioned in a previous post (msg #3) that there are plenty perl compilers about. As a couple of examples, see "Perl2.exe" (creates an executable for windows platforms) and see "PerlApp", which comes bundled with ActiveState's Perl Dev Kit, and can produce binaries for HP-UX, Linux, Solaris, and Windows.

"... i agree a good user lisence is better then encryption..."

I must protest in the most vehement form! Good computer security basics is the same as physical security. Put strong and obvious padlocks on your gates, not a sign which says "Thieves will be prosecuted". Security experts put it this way: You have to help the honest man stay honest. Sure, put the sign out, and have your premises protected with an alarm system, but also put the obvious deterents in place and make your valuables hard to steal, out of the reach of temptation. If you are a small operator without the time or resources to defend the licence agreement, it is not worth much.

"...could you explain how this works: (compiled executables for dist., etc.) ..."

My understanding is (feel free to jump in if I'm wrong): Perl 6 will come with a runtime environment called Parrot, which runs bytecode. Your Perl source would be compiled down to byte code which is what you would distribute. Note that Perl 6 will have some substantial differences from Perl 5.x, although Perl 5.x will be able to be automatically ported, persumably with some utilities which will come with Perl 6.

Shawn

netcommr




msg:438211
 6:19 am on Jul 25, 2003 (gmt 0)

Shawn -- perfectly explained... ;)

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / Code, Content, and Presentation / Perl Server Side CGI Scripting
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About
© Webmaster World 1996-2014 all rights reserved