Beefy Boxes and Bandwidth Generously Provided by pair Networks
Keep It Simple, Stupid
 
PerlMonks  

Re: CryPerl.

by tilly (Archbishop)
on Aug 28, 2006 at 23:48 UTC ( #570071=note: print w/replies, xml ) Need Help??


in reply to CryPerl.

It would be very easy to do badly.

The documentation for require discusses how to put subroutine references in @INC. All that you'd have to do would be to replace all of the entries in @INC with subroutine references to capture module loading, then load the code you wanted to run (decrypting if need be).

The reason why I say that this would be doing it badly is that there are two obvious holes. The first is that hiding the private key in the binary is far easier said than done. You can hide it, but it isn't that hard for determined people to try to find it. The second is that it is fairly easy in plain old Perl to do a dump of your memory image. Rummage through that and you'll find all sorts of interesting stuff - I believe including complete copies of the source code that Perl loaded.

But it would suffice to keep out casual observers.

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://570071]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others pondering the Monastery: (3)
As of 2020-01-26 09:20 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    Notices?