Announcement

**Imagine Programming** · 05-05-2009, 04:25 PM

Originally posted by Stephen G. View Post

I have a quick (maybe stupid) question.
When I build my project in AMS 7.5, is it neccessary to delete all of my comments from script or does it already do that? The reason I ask is because I don't want to make it easy for a hacker to manipulate my application in case the .cdd file gets hacked.

Thanks.

I believe that the comments aren't filtered out on build.

**Stephen G.** · 05-05-2009, 05:00 PM

If that's true, then the comments would need to be deleted manually prior to build, otherwise you are giving a potential hacker a blue print to your application.

**Draygoes** · 05-05-2009, 09:08 PM

I dont see much stopping a hacker from getting the blueprints anyway.

AMS doesnt have half the protection nessessary to create shareware with, and even if it did it wouldnt matter. Trying to stop a hacker from reading your app like a book is like trying to stop the sun from burning. It hasnt been done yet, and still everyone trys at least once.

Encryption of the license key for your product(The usual method) doesnt work because the *****er in question can just watch your program decrypt it in its memory space. That blows away just about any method of protection that AMS is capible of, and I dont think you could do much else.

**MicroByte** · 05-06-2009, 04:25 AM

a hacker would not need your comments to mess with your app, to a good programer reading source code is like reading the daily paper and hackers are just programers

there are plenty of things a skilled programer can do to slow down a hacker but you will never stop him, and as AMS has its obvious week points its even harder

but also remember, AMS is NOT a application devlopment tool, its a very powerful AutoPlay system that can also make full blown applactions, there is a huge differance so you should not expect to much from AMS in that direction, as a programer i understand its hard to provide the ease of use and functionalty that AMS provides and *try* to secure all that external data while theres a army of hackers waiting to pick it apart

you will be able to stop a hacker when you can also solve 3rd world hunger and achive world peace ... i just wish my boss also understood this fact

**Imagine Programming** · 05-06-2009, 12:08 PM

If hackers could be stopped, they wouldn't hack these days. You can try to make it as hard as possible, but as MicroByte sayd, AMS has it's week points. (ShadowUK posted about this a while ago).

Hackers are basicly reversing programmers.. They just watch the usage of your apps memory change, filter out the stuff it isn't, and get to the memory location they want in a little time.

Even applications written in pure C, C++ or any other code (think of assembly) can be reversed. That's why there are *****s, key generators, gamehacks etc.

I just can't understand why software and it's writers can't be respected, instead of being treated like that software is a 1 hour job...

**ShadowUK** · 05-06-2009, 12:39 PM

As long as they can't edit the memory it's OK. Since I'm using Sockets now instead of MySQL.

**Imagine Programming** · 05-06-2009, 02:12 PM

Originally posted by ShadowUK View Post

As long as they can't edit the memory it's OK. Since I'm using Sockets now instead of MySQL.

They can obtain the server address and go on from there. You're never safe (network sniffers)

**ShadowUK** · 05-06-2009, 11:27 PM

Originally posted by Imagine Programming View Post

They can obtain the server address and go on from there. You're never safe (network sniffers)

I don't mind if they see the data. I basically have my own protocol, You have to be logged in to do anything. The only concern I had was not being logged in and being able to read/set values in the database. However this isn't a problem as I send LOGIN before sending SET, GET.

**Imagine Programming** · 05-07-2009, 01:06 AM

Originally posted by ShadowUK View Post

I don't mind if they see the data. I basically have my own protocol, You have to be logged in to do anything. The only concern I had was not being logged in and being able to read/set values in the database. However this isn't a problem as I send LOGIN before sending SET, GET.

It's safer as using a MySql plugin/library i guess. I stopped using external recourses (like ftp, mysql etc.) when you noted me of the memory reading...

I knew it was possible, but the plain source? ah well. It's lua, so it's logic.

**ShadowUK** · 05-07-2009, 09:22 AM

Originally posted by Imagine Programming View Post

It's safer as using a MySql plugin/library i guess. I stopped using external recourses (like ftp, mysql etc.) when you noted me of the memory reading...

I knew it was possible, but the plain source? ah well. It's lua, so it's logic.

When IR address it, I'll be over ze moon.

Announcement

Building your project

Building your project

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment