develooper Front page | perl.perl5.porters | Postings from May 2010

Re: Perl programm security

Thread Previous | Thread Next
Joshua ben Jore
May 10, 2010 12:30
Re: Perl programm security
Message ID:
On Mon, May 10, 2010 at 6:49 AM, alex bernier <> wrote:
> In my script , i use DBI module  to launch SQL queries ,
> and i'm looking for a way to hide or to use the queries outside of
> my script?

If I were attacking your SQL queries and we were on a Mac OS/Solaris,
BSD, or Linux system, I'd use strace, ktrace, or DTrace to completely
bypass all your in-application obfuscation. If your query went over
the network (like most database queries) I could also just read the
queries with any common administrator tool for watching network

I wouldn't even have to know any Perl. Any administrator could do any
of the above.


Thread Previous | Thread Next Perl Programming lists via nntp and http.
Comments to Ask Bjørn Hansen at | Group listing | About