Beefy Boxes and Bandwidth Generously Provided by pair Networks
"be consistent"

Re: Acme Enc

by leocharre (Priest)
on Jul 24, 2008 at 02:25 UTC ( #699749=note: print w/replies, xml ) Need Help??

in reply to Acme Enc

Why are you trying to hide your source code?

Don't depend on obscurity for security. It goes against everything the people who made perl, ssh, the modules you're using- believe in.

It's not about morality- It's just poor practice. You will ultimately end up introducing new bugs, making your program slow- turning off anybody who may want to help- including the community and your co-workers! :-D

Check out Acme::Bleach.

I know it seems counter intuitive. But- do you like perl, apache, firefox, etc? These things work partly because it's not about hiding code. Making the conversion of philosophy from hiding things- to showing everything- is hard but you will grow and become stronger. Your stuff will work better and be more secure also.

If you must 'hide' things- "hide" config files with precious db acces parameters, etc- by chmodding them so only you or our software can read them. Your script in /home/myself/public_html/cgi-bin/precious.cgi could use YAML to read a config file in /home/myself/not_inside_webshare/precious.conf

Here, check this out, about security through obscurity. Obviously I want you to read the part that says 'arguments for'.
Also skim through some of this interview with Stallman, and some of the gnu ideology, it may energize you and inject you with ambition and good energy.

Log In?

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://699749]
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others surveying the Monastery: (5)
As of 2020-04-07 14:19 GMT
Find Nodes?
    Voting Booth?
    The most amusing oxymoron is:

    Results (42 votes). Check out past polls.