• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: Save as application - run only
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Save as application - run only


  • Subject: Re: Save as application - run only
  • From: Deivy Petrescu <email@hidden>
  • Date: Tue, 10 Nov 2015 19:09:22 -0500

> On Nov 10, 2015, at 18:50 , Shane Stanley <email@hidden> wrote:
>
> On 11 Nov 2015, at 10:09 AM, Deivy Marck Petrescu <email@hidden> wrote:
>>
>> However, the point I was making is that there ways to encrypt the whole process that makes it difficult to anyone to decrypt it even with the vulnerabilities (now, thanks to you much bigger than I previously thought) of AS.
>
> How much effort you make obviously depends on the value of what you're hiding. We began this thread with the widespread belief that saving a script as run-only would somehow provide some protection, when it provides precisely none.

Absolutely.
>
>> Below is a run only script. Read it using any text editor or quick look.
>> Run it and decide if you could actually see what was coming.
>
> I couldn't after spending a couple of minutes -- it looks like you're using run script to generate stuff. But I'm an amateur, and I don't have enough interest in spending a lot of time on it.

You did not try hard enough!
I really thought that writing a whole script as a run script string id something was secure. In reality it is a joke.
You can read it completely.
Even the run only  is not that secure.
You can almost read it completely.

>
> For a lot of things, that's probably good enough. However, if you think it's particularly secure, with respect, you're deluding yourself.
>
> Perhaps more pertinently, if you found yourself somehow accused of a security breach and you used anything based on something you cobbled together yourself, my guess is that you be in deep legal trouble. A credit card company could easily disclaim responsibility if it knew you were hiding your number like that, I'd bet. Just saying’.

Are you trying to save your a$$ after stealing my credit card ?


On a more serious note, yep, AS is not shining when it comes to security

> --
> Shane Stanley <email@hidden>
> <www.macosxautomation.com/applescript/apps/>
>

Deivy Petrescu
email@hidden




 _______________________________________________
Do not post admin requests to the list. They will be ignored.
AppleScript-Users mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
Archives: http://lists.apple.com/archives/applescript-users

This email sent to email@hidden


  • Follow-Ups:
    • Persistent properties [was Re: Save as application - run only]
      • From: Shane Stanley <email@hidden>
References: 
 >Save as application - run only (From: Jay Louvion <email@hidden>)
 >Re: Save as application - run only (From: Axel Luttgens <email@hidden>)
 >Re: Save as application - run only (From: Shane Stanley <email@hidden>)
 >Re: Save as application - run only (From: "Stockly, Ed" <email@hidden>)
 >Re: Save as application - run only (From: Shane Stanley <email@hidden>)
 >Re: Save as application - run only (From: Deivy Petrescu <email@hidden>)
 >Re: Save as application - run only (From: "Stockly, Ed" <email@hidden>)
 >Re: Save as application - run only (From: Shane Stanley <email@hidden>)
 >Re: Save as application - run only (From: Deivy Petrescu <email@hidden>)
 >Re: Save as application - run only (From: Shane Stanley <email@hidden>)
 >Re: Save as application - run only (From: Shane Stanley <email@hidden>)

  • Prev by Date: Re: Save as application - run only
  • Next by Date: Re: Save as application - run only
  • Previous by thread: Re: Save as application - run only
  • Next by thread: Persistent properties [was Re: Save as application - run only]
  • Index(es):
    • Date
    • Thread