I have done decompiling and disassembly its possible. But only on stuff built with Flex 1.x Disassembly: its really, really hard to read, a hacker would have to spend weeks reading your code to understand what is happening. Decompiling: creates an FLA file that you can load into the Flash dev environment, since I dont have this, I never looked at it. I think apps build with Flex 2.0 are far better security wise (than with 1.x) but it still good practice to put additional checks on the server side to make sure the user is sending valid data. Dimitrios Gianninas Developer Optimal Payments Inc.
________________________________ From: [email protected] [mailto:[EMAIL PROTECTED] On Behalf Of Satish Kumar.M Sent: Friday, June 01, 2007 3:00 PM To: [email protected] Subject: [flexcomponents] curious to know about Flex component Decompiling? ActionScript 3 looks more like Java and SWF files have been decompiled since a long time... does it mean developing in Flex means potential chance for decompilation & concerns for security ??? When a Flex App is loaded in the browser, I assume it's a SWF file with all the mxml & Components together. Is it proven that Flex apps cannot be decompiled??? can some one shed light on this.. thanks Satish Boston, MA. -- WARNING ------- This electronic message and its attachments may contain confidential, proprietary or legally privileged information, which is solely for the use of the intended recipient. No privilege or other rights are waived by any unintended transmission or unauthorized retransmission of this message. If you are not the intended recipient of this message, or if you have received it in error, you should immediately stop reading this message and delete it and all attachments from your system. The reading, distribution, copying or other use of this message or its attachments by unintended recipients is unauthorized and may be unlawful. If you have received this e-mail in error, please notify the sender. AVIS IMPORTANT -------------- Ce message électronique et ses pièces jointes peuvent contenir des renseignements confidentiels, exclusifs ou légalement privilégiés destinés au seul usage du destinataire visé. L'expéditeur original ne renonce à aucun privilège ou à aucun autre droit si le présent message a été transmis involontairement ou s'il est retransmis sans son autorisation. Si vous n'êtes pas le destinataire visé du présent message ou si vous l'avez reçu par erreur, veuillez cesser immédiatement de le lire et le supprimer, ainsi que toutes ses pièces jointes, de votre système. La lecture, la distribution, la copie ou tout autre usage du présent message ou de ses pièces jointes par des personnes autres que le destinataire visé ne sont pas autorisés et pourraient être illégaux. Si vous avez reçu ce courrier électronique par erreur, veuillez en aviser l'expéditeur.
