On Jul 4, 2013, at 9:53 AM, Richard Gaskin wrote: > Monte Goulding wrote: > > If this is the same project I think it is then she can't use > > encryption because she can't use any externals... nothing but > > the executable is allowed... > > While not nearly as secure as Blowfish (not by a long shot), this modest > encryption script can at least slow down hacks, and as a script is fully > embeddable: > <http://livecodejournal.com/tutorials/handy-handlers-005.html> > > I wouldn't recommend it for data requiring really strong security, but the > sort of person able to crack it is likely able to do a memory dump, so it's > probably no less secure than limiting stacks to RAM.
I notice that this routine uses md5digest. I have only glanced at it, so I don't know what the weak point is, but would it make any difference if it were updated to use SHA? -- Peter Peter M. Brigham pmb...@gmail.com http://home.comcast.net/~pmbrig _______________________________________________ use-livecode mailing list use-livecode@lists.runrev.com Please visit this url to subscribe, unsubscribe and manage your subscription preferences: http://lists.runrev.com/mailman/listinfo/use-livecode
