Re: Security issue with compiled DLL Files
- From: "Ken Halter" <Ken_Halter@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Thu, 17 Nov 2005 08:50:33 -0800
"Hu" <Hu@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:24AA1247-6ABA-4ACB-AEBA-7336538BC210@xxxxxxxxxxxxxxxx
>I have a small VB 6.0 ActiveX DLL project 1 class + 1 module. I have
>declared
> a password Constant in the bas module. If I open the compiled DLL with
> notepad I can read the password in plain text! I have tried moving it to
> the
> class file as well as adding a resource file to the project and hiding the
> string in there. I can still read the string plain as day in notepad.
> Help!
> How do I hide the password?
This is not a bug and is the exact same thing you'd see with any dll, or
exe, written in any language. Just pick any Windows DLL or EXE and look at
it in a hex editor.
It's up to the developer to encrypt any sensitive information. There are
literally hundreds of ways to do this. Here's one....
Another encryption prog - accurate & very FAST!
http://www.planetsourcecode.com/vb/scripts/ShowCode.asp?txtCodeId=43280&lngWId=1
If you don't like that one, search for that site for Encryption... you
should get over 500 samples.
--
Ken Halter - MS-MVP-VB - http://www.vbsight.com
DLL Hell problems? Try ComGuard - http://www.vbsight.com/ComGuard.htm
Please keep all discussions in the groups..
.
- Prev by Date: Re: MSScript Control
- Next by Date: Re: Issue with TryParse and DBNull in VB 2005
- Previous by thread: VB6 crashes on start after fresh install
- Next by thread: Re: Issue with TryParse and DBNull in VB 2005
- Index(es):
Relevant Pages
|
