Script Limits
Richard Gaskin
ambassador at fourthworld.com
Thu Aug 7 16:32:00 EDT 2003
Mark Talluto wrote:
>> In the non-password-protected stack, all three text strings are
>> readable.
>> In the password-protected stack none of them are.
>>
>> It seems a change was introduced in the engine at some point that now
>> provides complete protection for all three types of data storage.
>>
>>
>
> I just did another test in MC 2.5:
>
> While it is true that the data is safe in a text editor, it is not safe
> when you do the following:
>
> Try opening that stack you created in MC. You can not get to the
> script data, but you can surely open up the custom property and read
> what you put in there.
Good point. But while there mare good reasons to have self-modifying
scripts, I'm not sure that having script space double as data storage is the
optimal answer. Ironically the habit began with users of HC and OMO,
neither of which provided options for protecting scripts at all....
Maybe better would be a development-level password protection: when the
devPasskey is set, before a stack can be opened in any IDE it would need to
have a matching devPassword.
Of course one could build their own IDE, but if the data's that interesting
it really needs something stronger than the engine's DES-based encryption
anyway.
--
Richard Gaskin
Fourth World Media Corporation
Developer of WebMerge: Publish any database on any Web site
___________________________________________________________
Ambassador at FourthWorld.com http://www.FourthWorld.com
Tel: 323-225-3717 AIM: FourthWorldInc
More information about the metacard
mailing list