|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-disclosure] plz suggest security for DLL functions
Valdis.Kletnieks
vt.edu
Date: Fri Jul 01 2005 - 13:18:04 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Fri, 01 Jul 2005 15:26:06 +0530, Gaurav Kumar said:
> if it would have been so simpler, i wouldnt have asked it here,
> the application design doesnt allow us to use the conventioal
> loadlibray method. we need to export functions also and at the same
> time protect from misuse.
Give them a DLL that just tosses an RPC call to a secured server that you
manage.
In general, if it's (even potentially) in their address space, they can misuse
it. So the only real solution making sure that your Secret Sauce code is on
some other system where they can't find out it's just Miracle Whip and a shot
of jalepenos....
Another, even better, idea is to give them a click-through EULA that contains
a line of the form "misusing or reverse-engineerng our usage of jalepenos will
result in a $MOBY surcharge and/or other legal action...."
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQFCxYjbcC3lWbTT17ARAvsIAJ93YmkSo8XlVZYogMgiw5bdypO0nACfVH+m
JJtukN0AaxYYse/tBLlI7qY=
=0JKU
-----END PGP SIGNATURE-----
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]