how to protect the source
Maric Michaud
maric at aristote.info
Mon Sep 15 07:29:45 EDT 2008
Le Monday 15 September 2008 13:02:58 João Abrantes, vous avez écrit :
> Hello Everyone.
>
Hello,
>
> I am building a client in python that will connect himself to a mysql
> server with a certain username and password. I will compile this client
> and turn him into a .exe . The thing is that I know that is possible to
> get the source of the code back from an .exe and I don't want anyone to
> know which username and password are they using because I don't want
> them to access to the mysql server without my client. Do you have any
> ideas of what can i do? Thanks!
You're going on the wrong path. It's far easier to sniff the network traffic
to get the password than to decompile the program. Furthermore you can't
achieve good security this way (games vendors try hard to do this but are
always defeated). You can't hope to gain control on what your users do with
the access you gave them.
So, the right thing to do is to only allow on the database server the
operations your client app needs given the account you created specifically
for it.
--
_____________
Maric Michaud
More information about the Python-list
mailing list