Product: SourceGuardian Pro 2.0 Price: $250.00 The main purpose of this software is to encrypt and obfuscate your PHP scripts to prevent other people from accessing your source code, whether you've got a nosey host, you need extra security when selling code, or you're just plain selfish :-) This software could allow a PHP contractor to add a whole new pricing scheme to their projects. For example: 50% of the agreed upon price will deliver a fully functional "demo" that renders itself useless after 7 days. A non-demo version will be delivered upon receipt of the other 50% and for an additional fee, full source (unencrypted) access. No additional extensions need to be bundled into PHP to run encrypted files, and they'll run on any setup (except Apache 2) according to the site & help files. All you need for an encrypted file to run is a version of PHP >= 4, and the appropriate ixed file - the latest of which are available at the SourceGuardian website. Just bundle them with your distributions. How secure is it? Well, practically the only way to reverse-engineer the code would require a partial rewrite and compilation of the core PHP engine, and very dedicated cracker. It's secure. I've only used this software for a very short period of time and I have already found it to be very inspiring, it makes me anticipate future projects. I'm 100% for open-source technology, but unfortunately people will take advantage of you if you're not careful; SourceGuardian is the perfect solution. Having researched similar software by other companies, I'd have to say SourceGuardian is by far the most reasonable product for my needs. Pros:- Non-expiring license
- Bundled with features such as IP restriction and timeout settings (which are a must in my opinion), this software is currently the cheapest on the market.
- Easy & self-explanitory to use.
- Can be run in command line mode (for super geeks).
- Custom expiration messages (ie, "dis c0d3 h4s b33n expung3d.")
- Free minor updates
Cons:- Although it warns about making backups, because the files you encode are overwritten through a one-way (irreversable) encryption, there doesn't appear to be a backup option even though it hints that there is one available (somewhere?).
- It doesn't appear you can edit or make last second changes to scripts directly through the software interface, at least in windows.
Check out the SourceGuardian website for more details and visual examples. | DISCLAIMER: The content provided in this article is not warranted or guaranteed by Developer Shed, Inc. The content provided is intended for entertainment and/or educational purposes in order to introduce to the reader key ideas, concepts, and/or product reviews. As such it is incumbent upon the reader to employ real-world tactics for security and implementation of best practices. We are not liable for any negative consequences that may result from implementing any information covered in our articles or tutorials. If this is a hardware review, it is not recommended to open and/or modify your hardware. |
More PHP Software Reviews Articles More By notepad developerWorks - FREE Tools! | Learn field-tested SOA principles, methodology, technology and implementation from the global SOA market leader - in a new e-book by an IBM SOA expert. Written by IBM Certified SOA Solution Designer Bobby Woolf, "Exploring IBM SOA Technology & Practice" is the ultimate insider's guide to SOA - a PDF e-book packed cover to cover with IBM's specific advice on how to make your SOA implementation a success. FREE! Go There Now!
| | | | As businesses grow increasingly dependent upon Web applications to provide services to customers, employees and partners, these complex applications become more difficult to secure. Although traditional security solutions protect Internet infrastructure layers, they do not guard against HTTP and HTML attacks. Many organizations that conduct security testing still deploy applications that allow attackers to manipulate their logic and wreak havoc on their business. To mitigate this risk, development and delivery teams must address Web application security throughout the lifecycle, addressing the many layers detailed in this paper. FREE! Go There Now!
| | | | Achieving true agility is a never-ending effort. We will showcase how you can become agile incrementally, a few practices at the time.Which practices should any agile team strive to adopt? What additional practices should you consider based on your needs to scale? Adopting practices are however made much easier with the right tool support. What about if your tools adapt to your practices? We will take a look at how the Jazz technology can be leveraged to make your process change the behavior of your tools. FREE! Go There Now!
| | | | You probably have thousands of lines of COBOL code loaded with business intelligence and being used to run your business, along with an army of developers maintaining these applications. Learn how to prepare your applications and developers so you can keep that competitive edge and move to a service-oriented architecture with the IBM Rational Enterprise Modernization solutions. Replay is available for 9 months. FREE! Go There Now!
| | | | Join us for this on demand webcast to learn about developing complex systems more quickly and efficiently. We'll cover market drivers for developing, governing and reusing systems software assets and how you can develop system software assets with Rational Asset Manager. FREE! Go There Now!
| | | | Discover how IBM Rational AppScan Standard Edition can help you detext vulnerabilities in your web applications in the Web Application Security eKit. IBM Rational AppScan is a leading suite of automated web application security solutions that scan and test for common Web application vulnerabilities. The new Web Application Security eKit provides you with valuable resources, including white papers, demos, and additional information on the benefits of testing your Web applications. FREE! Go There Now!
| | | | Visit IBM developerWorks to download a free trial version of WebSphere Extended Deployment Compute Grid, which lets you schedule, execute, and monitor batch jobs. Because online transaction processing and batch jobs execute simultaneously on the same server resources, you can avoid costly duplication of resources. Compute Grid supports job types of Java transactional batch, compute-intensive and a new type called "native execution", which enables non-Java workloads to run on distributed end points. FREE! Go There Now!
| | | | This tutorial shows new users of IBM WebSphere Business Monitor Version 6.0.2 how to perform the "Hello World" equivalent for monitoring business process applications. It is intended to help you get familiar with the capabilities of the product. FREE! Go There Now!
| | | | As businesses grow increasingly dependent upon Web applications, these complex entities grow more difficult to secure. Most companies equip their Web sites with firewalls, Secure Sockets Layer (SSL), and network and host security, but the majority of attacks are on applications themselves – and these technologies cannot prevent them. This paper explains what you can do to help protect your organization, and it discusses an approach for improving your organization’s Web application security. FREE! Go There Now!
| | | | In this webcast, you'll get an introduction to the eXtreme Transaction Processing (XTP) features of WebSphere Extended Deployment and the common architectural traits required by XTP applications. See how WebSphere Extended Deployment's ObjectGrid feature provides a state-of-the-art infrastructure for hosting XTP applications. FREE! Go There Now!
| | | | All FREE IBM® developerWorks Tools! | |