"Scott Marlowe" <scott(dot)marlowe(at)gmail(dot)com> writes:
> On 10/31/07, Douglas McNaught <doug(at)mcnaught(dot)org> wrote:
>> The only bulletproof way to do this currently is to write all your
>> stored functions in C and load them as a shared library.
> Well, as I pointed out in my post, even that's not bullet-proof. As
> long as decompilers / debuggers etc... exist, then compiling is just a
> small barrier to a good hacker. The only way to win is not to play,
> i.e. keep the code in house.
Very true, I should have said "semi-bulletproof". :)
In addition, the "interesting" parts of a C function would be the SPI
queries, which unless further obfuscated would be easily extractable
from the library using strings(1).
In response to
pgsql-general by date
|Next:||From: Ian Goldsmid||Date: 2007-10-31 19:56:39|
|Subject: can someone please tell me how to unsubscribe from this group - thanks|
|Previous:||From: Ron St-Pierre||Date: 2007-10-31 19:22:42|
|Subject: Re: getting list of tables from command line|