January 10th, 2013, 06:49 AM
How to kleep closed source? ( security problem )
I am currenty working on a important project with my friends. I have to write gui client in python which needs to connect with onlin sql database. I would compile it with py2exe since that's the only way to make it runable for windows. I came to problem with keeping my program source closed, i heard that py2exe is easily reverse engineered.. If someone would do that on my program, then he would have access to database, which means failure(hacked). So how can i protect my python program compiled with py2exe? Or there is other way?
All i need is keep my program source closed for users.
Thanks in advance.
January 10th, 2013, 09:49 PM
(C)Python is an interpreted language: any way you distribute your program you're going to have to include either the Python source code or the bytecode (.pyc), which can be easily decompiled to source.
January 11th, 2013, 10:03 AM
In any case I think that if the security of your implementation is jeopardized merely by looking at the source code, you are doing it wrong.
Comments on this post
My armada: openSUSE 13.2 (home desktop, home laptop, work desktop), Ubuntu 14.04 LTS (server), OpenELEC 5.0 (HTPC), Debian GNU/Linux 7.7.0 (mini laptop), Android 4.2.1 (tablet)
January 11th, 2013, 10:34 AM
I absolutely agree with SuperOscar. Don't misuse closed source to cover up poor programming or security holes.
Your users already have database access through the application. If direct access gives them more possibilities, then this is your problem. You need to set the proper user permissions on your database server. Don't rely on your application to restrict the users.
January 11th, 2013, 11:16 AM
One way is through source code obfuscation, see:
Real Programmers always confuse Christmas and Halloween because Oct31 == Dec25