Confidential data exposed in exe

This forum is for general support of Xbase++
Post Reply
Message
Author
User avatar
PedroAlex
Posts: 234
Joined: Tue Feb 09, 2010 3:06 am

Confidential data exposed in exe

#1 Post by PedroAlex »

Attached is a small example with confidential data.
Try compiling and then edit the exe with notepad ++.
Then Ctrl + F and look for "Login".
it is very easily discover Login and password.
For those who have private encryption keys and other sensitive data, this can not happen.

Do you know of any solution that can prevent this !?

Many Thanks for comments.

Pedro
Attachments
Login.rar
(982 Bytes) Downloaded 1019 times
Pedro Alexandre

Victorio
Posts: 633
Joined: Sun Jan 18, 2015 11:43 am
Location: Slovakia

Re: Confidential data exposed in exe

#2 Post by Victorio »

Hi Pedro,
Simply save secret password in encrypted file, do not put it to source code.
When run program, read file and decrypt

User avatar
rdonnay
Site Admin
Posts: 4775
Joined: Wed Jan 27, 2010 6:58 pm
Location: Boise, Idaho USA
Contact:

Re: Confidential data exposed in exe

#3 Post by rdonnay »

If you must put the password in the EXE, you can enter it in your code as a 32-character Md5Hash().

Look at \exp20\samples\md5hash
The eXpress train is coming - and it has more cars.

Post Reply