|
|
Posted by Littlefire on 06/02/06 06:27
Ira Baxter wrote:
>
> "Littlefire" <albe@ambientatom.co.za> wrote in message
> news:1149063556.642649@inet2.up.ac.za...
>> universalbitmapper wrote:
>>
>> > Hi,
>> >
>> > I'm looking for a way to protect my sources php/CSS/js, there is
>> > software to do it, but the licence price shifts-scrolls tenfold, anyway
>> > if one customer is really an expert, she could find out
>> >
>> > So I need pro advice on that one
>> >
>> > Ishke Baha
>>
>> How about a completely free "obfuscator"?
>>
>> function obf($string) {
>> $obf_string = "";
>> foreach ( explode("", $string) as $char ) {
>> $obf_string .= ord($char);
>> }
>> return $obf_string;
>> }
>>
>> Obviously, $string could be the contents of a file. Make a php command
> line
>> script to obfuscate files this way.
>
> The problem with this is there is a completely free de-obfuscator
> of exactly the same size and complexity, which means this provides no
> protection
> at all.
>
> A sophisticated JavaScript obfsucator scrambles the names, strips
> comments,
> removes indentation. The result is still executable, but very hard to
> understand.
> Yes, an expert can often work through the details, but the moment it is
> more work to figure it out than it is to write it, your protection is
> successful.
>
> A PHP obfuscator would have the same properties.
>
> We offer both. No configuration changes of any kind to your web site.
> See http://www.semanticdesigns.com/Products/Obfuscators/index.html
>
>
Point taken. However, if the objective is to obfuscate to untrained eyes, my
method will do just fine and it is completely free. If the objective is to
obfuscate to trained eyes, you're in trouble no matter which algorithms or
methods you use. Anything can be reverse engineered.
I think probably the best route would be to go the Zend Guard
(http://www.zend.com/products/zend_guard) way - it includes advanced
features like licence management for commercial software, and the Zend
Optimizer (http://www.zend.com/products/zend_optimizer) to run these
encoded scripts is free. Zend Guard will set you back $995 yearly though.
But if you're THAT serious about protecting your IP, it's small change.
IMHO, if you're paranoid about your intellectual property and want to fork
out money to protect it, just fork out the money and get it over with. If
you're not that paranoid, don't bother at all.
But, having experience running a very large university web service, I often
find that people are interested in encoding projects for the simple
objective to hide their terrible coding skills :)
A
Navigation:
[Reply to this message]
|