Re-2: script not working when the stack is password protected, why?

Jan Schenkel janschenkel at yahoo.com
Fri Aug 22 07:29:48 EDT 2008


--- "runrev at animabit.de" <runrev at animabit.de> wrote:
> Hello,
> 
> just got the info on chatrev that this approach
> 
> on openCard
> if the environment <> "development" then
> set the passKey of this stack to "xyz"
> end if
> end openCard
> 
> is not secure for a rev file
> 
> because someone could open the rev file, make
> another substack with a script (go stack
> "protectedstack" (now the password is passed); go
> stack "mynewsubstack"; put script of stack
> "protectedstack" ... voila)
> 
> I could not even think so evil ;-)
> 
> I try:
> 
> on anyhandler
> set the passKey of this stack to "xyz"
> do and let the script cut and work from the stack...
> set the passKey of this stack to empty
> end anyhandler
> 
> ...
> 
> Greetings, Franz
> 

Hi Franz,

This is indeed not secure - your best bet is to move
the handler into a separate password-protected library
stack and make your 'work' stack a more-or-less empty
shell where you only have the controls.
At that point, frontScripts come in handy to intercept
mouseUps and other events that need to call into the
library stack.
It's a pain, but it's your best shot.

Jan Schenkel.

Quartam Reports & PDF Library for Revolution
<http://www.quartam.com>

=====
"As we grow older, we grow both wiser and more foolish at the same time."  (La Rochefoucauld)


      



More information about the use-livecode mailing list