How safe and feasable is it ?

[J. Landman Gay]

On 11/7/2014, 2:33 PM, jbv at souslelogo.com wrote:
> Hi list
>
> Here's something I've had in mind for quite some time.
> Let's say you have an app built with LC that you send to
> various users as standalones with regular updates.
> What if all the most important functions of that app were
> gathered as handlers in the main stack script for instance, and
> at every startup, a script would check with a remote server
> for a possible update of that script, and dowload the new
> version (if any) to replace the old one with a simple
> "set script of this stack to myVar" ?
> The standalone could be a simple front end with all the
> most important objects, and therefore would weight slightly
> less than the complete app, and above all would need to
> be downloaded only once by end users who would not have
> to worry about versions and updates.
> At first glance this looks like a convenient way to update
> existing functions, add new ones, manage different settings
> among users, etc.
> But what about safety ? Is there a way to encrypt the main
> script while it is downloaded at startup so that it can't be
> caught by some sniffer ? And is there any other crucial
> security issue that didn't cross my mind ?

There's the part about standalones not being able to save themselves to 
disk. To make this work, the scripts would have to be in a separate 
stack that is put in use. If you're doing that, you may as well just 
download the whole stack and overwrite the old one. The only advantage 
to getting just the script itself would be if the stack is very large 
due to images or other content, and the only change is in the script. 
Then it would be faster to just get the text.

-- 
Jacqueline Landman Gay         |     jacque at hyperactivesw.com
HyperActive Software           |     http://www.hyperactivesw.com