On 30/05/2011, at 11:28 AM, Seth Willits wrote: > My understanding it's it's not "weak", it's just a classic case of > one-hack-fits-all like you say. The keyed authentication is as good as it > gets for a license scheme. The only problem is that it generates long > (250ish) character keys and some "less knowledgeable" users, shall we say, > don't know that Copy & Paste exists, so they complain.
I think the encryption it uses is strong, but the way it integrates into the app gives a single point of failure, i.e. you can hack the function call that tests whether the license is valid to return true instead of false and you're away. Again, this information might be out of date and I wouldn't want to malign anyone's coding effort - just something to look out for (if you think it's worth worrying about). --Graham _______________________________________________ Cocoa-dev mailing list ([email protected]) Please do not post admin requests or moderator comments to the list. Contact the moderators at cocoa-dev-admins(at)lists.apple.com Help/Unsubscribe/Update your Subscription: http://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com This email sent to [email protected]
