Preventing date rollback
Mike Stefanik/78125
mike at bria.AIX
Fri Jan 4 06:08:39 AEST 1991
In article <1976 at necisa.ho.necisa.oz.au>, boyd at necisa.ho.necisa.oz.au (Boyd Roberts) writes:
> In article <292 at bria.AIX> mike at bria.AIX (Mike Stefanik/78125) writes:
> >
> > [ stuff about re-writting a string in an executable ]
> >
> >The above is preferable over using inode information such as access time,
> >because that can easily be fudged.
> >
>
> And what stops me from re-writing the string in the executable?
Nothing, for the truly dedicated individual. The whole point of security
(IMHO) is not to make it impossible, but to make it as *painful* as possible.
Anyone with enough intellect, interest, dedication, etc. can break any security
scheme. However, encoding the date in the executable would make it more
painful for the would-be pirate than would using the touch command.
If your looking for a perfect security scheme, then don't let anyone use
your software but you.
-----------------------------------------------------------------------------
Michael Stefanik, Systems Engineer (JOAT), Briareus Corporation
UUCP: ...!uunet!bria!mike
"If it was hard to code, it should be harder to use!"
More information about the Comp.unix.admin
mailing list