Re: scrambling perl source code

["Dana Epp" <dana () vulscan com>]

Hey Charles,

Although I do not know to what extent you need to obscure your code, I can
say right off the top of my head that fretting about obscuring your project
by scrambling it is not an effective way to increase the security of your
code, or decrease the attack surface. Anything that you can scramble in your
master sources can just as easily be descrambled by a determined attacker.

Maybe it would be more beneficial if you could let us know what the end goal
is that you wish to accomplish. Are you trying to protect your intellectual
property that is invested in the code? Are you wishing to prevent others
from auditing it? Are you looking for ways to protect the code at the point
of distribution?

There are better ways to address all these types of situations than
"scrambling" the code. Perhaps if you could expand on what it is you truly
want to accomplish, we can help you out.

---
Regards,
Dana M. Epp


----- Original Message ----- 
From: "Charles Lacroix" <chuck () linuxquebec com>
To: <security-basics () securityfocus com>
Sent: Tuesday, June 17, 2003 1:18 PM
Subject: scrambling perl source code



hi, i found a couple of free/non free scripts that are able
to scramble the source of my perl scripts. But now starts
a new problem.

How can i scramble the whole project and
not messing up mod_perl exported variables and methodes
in all my other scripts ?

I want to scamble my modules and my scripts that go with them.



-- 
Charles Lacroix
chuck () linuxquebec com
Support Technique
LQT Systems

---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.

Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.

Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------


---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.
     
Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.
          
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------