Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 8 years ago.
Improve this question
I have been building an application, in my spare time, for a while now and have been thinking about how to protect my product from piracy (it will be something that the customers will have on their server).
I have been checking out the various encryption products around and they seem to be do the trick.
But, I how much will it slow down my site?
It is currently not possible to let encrypted general programs run on customer machines (see On the (Im)possibility of Obfuscating Programs by Barak, Goldreich, Impagliazzo and Rudich).
What you probably mean is code obfuscation which is not encryption in any way. Most likely there is no performance hit when you use them in the same way as JavaScript runs in the same way when minified.
Related
Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 5 years ago.
Improve this question
I'm working on a user management system, and was curious how you all deal with removing customers ? do you completely delete them from the database or do you archive them (hide them) ?
In my technical opinion, the best approach is to "hide" the customers. That way you can keep track of historical customers and their behavior.
That said, there are legal reasons why you might have to legally delete them or obfuscate them so their identity unknown.
So, it depends, and it depends on the legal and regulatory framework, as well as the business requirements of what you are working on.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 8 years ago.
Improve this question
I have a website run by php. I have about 80 users that will be signing up within a hour period.
my question is are there any problems that could occur when having lots of people accessing my database all at once?
I mean 80 users is a lot for me, and if some of you people that have way more than that are laughing at me, how many people would it take to mess up a database?
Thanks in advance!
You could use a tool like apachebench to check. Then you could use tools like memcached (or memcachedb if you needed persistence) to dial down the mysql queries. I would also set up mysql slow query logging.
Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 8 years ago.
Improve this question
I'd like to know what to do if I find a high traffic site that is vulnerable to JS/SQL injection? I contacted the owner but it doesn't seem they care.
I can easily submit the <script> in their discussion forums and trigger the execution. Is there a fair best practices on how to direct the website owner to protect themselves?
In worst scenario, should I hack their site and force them this way to correct it?
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 8 years ago.
Improve this question
So I'm kind of tossing an idea around in my head... is it feasible to write a webapp that asks for a user to input a snippet of code, and then compiles it remotely on a server, and returns the output back to the user?
feasible sure, you could definitely make this work from a technical point of view. but in terms of security, it sounds very dangerous.
Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 4 years ago.
Improve this question
What is the best & most secure way you've handled sessions in a PHP application? I want to know the best, most robust and secure method there is. :)
Your session data will be pretty safe. If you want to make it even safer, encrypt it. Beyond that, you'll have to be more explicit about what you desire.
That would depend on your environment. If your using a shared host, it maybe possible for others customers hosted on the same box to access you session data. If that's the case, it might be safer to store it in a database. But every server is different. Can you elaborate on your setup, and what your trying to protect against?