| Subject | Re: [firebird-support] Re: Undocumented internal encrypt/decrypt in FB |
|---|---|
| Author | Geoff Worboys |
| Post date | 2007-07-18T06:36:56Z |
> ...Please read some of my previous comments on this list and the
> I could do many things, depending on the level of difficulty
> I want to achieve. I would have choice. Right now, I don't
> have anything - Firebird developers decided that since
> PERFECT security is not possible, it makes no sense to
> attempt ANY security.
article on the subject referenced several times.
To paraphrase myself:
Firebird is an open-source project. Any attempt to put data
obfuscation code into open source means that the result is no
longer obscure. It becomes fast and easy to break any
"security" achieved, indeed someone will probably build such
a solution and make it available for download.
If you want any chance of security by obscurity you must do it
outside the open source - the Firebird developers cannot do it
for you.
--
Geoff Worboys
Telesis Computing