Columbia Kermit

home *** CD-ROM | disk | FTP | other *** search

/ Columbia Kermit / kermit.zip / newsgroups / misc.20041116-20060924 / 000349_JDanSkinner@JDanSkinner.com_Sat May 13 10:51:45 2006.msg < prev next >

Wrap

Internet Message Format | 2020-01-01 | 4KB

Path: newsmaster.cc.columbia.edu!panix!newsfeed-00.mathworks.com!newscon06.news.prodigy.com!prodigy.net!border1.nntp.dca.giganews.com!nntp.giganews.com!postnews.google.com!j73g2000cwa.googlegroups.com!not-for-mail From: JDanSkinner@JDanSkinner.com Newsgroups: comp.protocols.kermit.misc Subject: Re: Script compiling / encrypting? Date: 12 May 2006 16:04:21 -0700 Organization: http://groups.google.com Lines: 56 Message-ID: <1147475060.983681.275370@j73g2000cwa.googlegroups.com> References: <1147371315.638050.245860@j73g2000cwa.googlegroups.com> <slrne6751c.r56.fdc@sesame.cc.columbia.edu> <1147450786.063942.270090@i39g2000cwa.googlegroups.com> <PV29g.42916$nA3.30482@news-wrt-01.rdc-nyc.rr.com> NNTP-Posting-Host: 24.159.192.106 Mime-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" X-Trace: posting.google.com 1147475066 6559 127.0.0.1 (12 May 2006 23:04:26 GMT) X-Complaints-To: groups-abuse@google.com NNTP-Posting-Date: Fri, 12 May 2006 23:04:26 +0000 (UTC) In-Reply-To: <PV29g.42916$nA3.30482@news-wrt-01.rdc-nyc.rr.com> User-Agent: G2/0.2 X-HTTP-UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.0.3) Gecko/20060426 Firefox/1.5.0.3,gzip(gfe),gzip(gfe) Complaints-To: groups-abuse@google.com Injection-Info: j73g2000cwa.googlegroups.com; posting-host=24.159.192.106; posting-account=5JPUcQwAAAB6TGKSwwkRxsWxWFx0QQ_3 Xref: newsmaster.cc.columbia.edu comp.protocols.kermit.misc:15606 Jeffrey Altman wrote: > quertyq wrote: > > Hi Frank, > > > > I am writing a program for our company to do > > file transferrs on the user's computers, and an > > FTP server which is used by a controlling > > program on the user's computers. We would > > not want to use a shared file system because > > we do not want the users to have direct access > > to these files ... only controlled access through > > a program where they point & click. We can > > also control permissions at the server level. > > > > The program may have to be updated from time > > ( on the user's computers ) to time to change > > logins, passwords, source & target directories, > > etc. The only forseeable problem is how to > > conceal the code so that ambitious end users > > cannot open the source with an editor and "play". > > > > Since they use winxp, I'm at a loss on how to > > do this ( if it is even possible ). > > > > - Matt > > If the program runs in the user's account, then the > most you can do is obfuscate the information. If the > program runs on the machine in a different account, > such as that belonging to a service, then you can > prevent the user's from being able to access the > details such as login info, locations, etc. > > If you set things up properly, then you can even > control the contents of the registry information for > the service by using Active Directory Group Policy > to push out changes to the machines. > > Personally, I would simply use a secure distributed > file system and grant the user's access to the appropriate > files on an as needed basis. If you need to change the > locations, change the ACLs. > > Jeffrey Altman An alternate approach is to use a wrapper program which contains the Kermit script in binary form, or encripted if you must. Execute the kermit script by launching the wrapper which writes the script to a temporary file then uses it to run the kermit transfer then deletes the temporary file, always deletes the temporary file. Not a perfectly secure solution, but reasonably so. If updates are required, simply replace the wrapper. Regards...Dan.