How to secure a script

[happyhappy]

Greetings all! I have a question for ya'll

I have a script that I have created what is the best way to secure it? I want to be able to secure it per domain or some other format. What do you suggest

Thank you

Add:

Script is written in php

 

[Dave]

What kind of script is it?

 

[weblord]

codelock will do on most cases.

 

[happyhappy]

It is a php script that calls a data base for a website. Like a image file hosting

What kind of script is it?

Thank you do you currently use it? If you do I will have a few questions for you..

codelock will do on most cases.

 

[user-7256]

Ummm encrypting your PHP with CodeLock is not going to "secure your script."

What do you mean by "secure it" anyway? Bullet-proof it from cracking attempts? Or prevent unauthorized distribution of it?

 

[Peter]

If you are trying to stop distribution then something like http://solidphp.com/products/phpaudit/index.php would do the trick however it is pointless unless you encode it with ioncube or zend encoder.

This will not fully stop the distribution as ioncube and zend can be unencoded using some services. They can then remove the php audit code however it will stop everone bar the most determined.

 

[happyhappy]

Yes to secure it so people do not pass it around like they own it I know if there is a WILL there is always going to be a WAY so nothing is bullet proof as I understand. Thank you for your help

Ummm encrypting your PHP with CodeLock is not going to "secure your script."

What do you mean by "secure it" anyway? Bullet-proof it from cracking attempts? Or prevent unauthorized distribution of it?

Thank you for the link! Will look into solidphp. Peter thanks for your help

If you are trying to stop distribution then something like http://solidphp.com/products/phpaudit/index.php would do the trick however it is pointless unless you encode it with ioncube or zend encoder.

This will not fully stop the distribution as ioncube and zend can be unencoded using some services. They can then remove the php audit code however it will stop everone bar the most determined.

 

[Isabella_Smith]

Look into the command trap.

 

[youbetcha1018]

session_start();
if ((isset($_SESSION['user_login']) &&
$_SESSION['user_login'] != "") ||
(isset($_SESSION['user_password']) &&
$_SESSION['user_password'] != ""))

check php.net about SESSION

 

[Keral_Patel]

phpLockIT

http://phplockit.com/

Thanks.

 

[1NiteStand]

as said, you could try CodeLock, phpLockIt, etc. or many of the other PHP code obfuscation/encryption tools.. this adds an extra layer for crackers to get thru, but make sure the servers where the scripts are located are also secured as to prevent any one from trying to take the code (among other things), etc.

 

[sastro]

Zend guard 4 already decoded by unzended, but Zend Guard 5 still securu i think.

 

[beaver6813]

Please do us developers a favour though, have a few core files that the most important things are in and encode only those, that way we still have the freedom of editing parts of the script that need editing without you loosing your control over it

 

[xrvel]

as said, you could try CodeLock, phpLockIt, etc.

Both encryption results can be decrypted.
But i haven't tried ioncube.