From owner-freebsd-hackers@FreeBSD.ORG Tue Feb 19 04:15:20 2008 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 66FBD16A419 for ; Tue, 19 Feb 2008 04:15:20 +0000 (UTC) (envelope-from mwm-keyword-freebsdhackers2.e313df@mired.org) Received: from mired.org (bhuda.mired.org [66.92.153.74]) by mx1.freebsd.org (Postfix) with SMTP id 02EBC13C458 for ; Tue, 19 Feb 2008 04:15:19 +0000 (UTC) (envelope-from mwm-keyword-freebsdhackers2.e313df@mired.org) Received: (qmail 50913 invoked by uid 1001); 19 Feb 2008 04:14:00 -0000 Received: from bhuda.mired.org (localhost.localdomain [127.0.0.1]) by bhuda.mired.org (tmda-ofmipd) with ESMTP; Mon, 18 Feb 2008 23:13:59 -0500 Date: Mon, 18 Feb 2008 23:13:59 -0500 To: freebsd-hackers@freebsd.org Message-ID: <20080218231359.7601cd70@bhuda.mired.org> In-Reply-To: <86068e730802181954t52e4e05ay65e04c5f6de9b78a@mail.gmail.com> References: <86068e730802181718s1ad50d3axeae0dde119ddcf92@mail.gmail.com> <47BA3334.4040707@andric.com> <86068e730802181954t52e4e05ay65e04c5f6de9b78a@mail.gmail.com> Organization: Meyer Consulting X-Mailer: Claws Mail 2.9.1 (GTK+ 2.10.12; amd64-portbld-freebsd6.2) Face: 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 Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Delivery-Agent: TMDA/1.1.11 (Ladyburn) From: Mike Meyer Subject: Re: encrypted executables X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 19 Feb 2008 04:15:20 -0000 On Mon, 18 Feb 2008 19:54:14 -0800 "Jerry Toung" wrote: > On Feb 18, 2008 5:39 PM, Dimitry Andric wrote: > > On 2008-02-19 02:18, Jerry Toung wrote: > > > anybody knows of a tool to encrypt executables under FreeBSD? may be > > from > > > the ports? > > > I am not talking about simple file encryption. > > > > Can you elaborate on what you *are* talking about then? Some > > security-by-obscurity scheme, perhaps? :) > I need to encrypt elf binaries. I'd like to make it harder for the bad guy > to reverse engineer my app. Basically the DRM problem (only executing your property under conditions you specify, not under those the end user might want). A *lot* of money has been spent trying to do this, but nobody has done it yet. Some very smart people have concluded it can't be done. That said, you did say "harder", not "impossible". Making it harder is certainly possible, depending on the conditions. What are they conditions you want this to work under? FWIW, the only thing that in this area is to not let them run the critical parts of your app on their hardware. Put those on your service, exported via the network, and then give the end user a UI that talks to that. http://www.mired.org/consulting.html Independent Network/Unix/Perforce consultant, email for more information.