On 2/11/06, WIF <[EMAIL PROTECTED]> wrote: > like calling a script that provides some info (url, name, ...) ? > maybe even MD5 ... or some other hash ?
any protection of the type check-condition, play-if-check-passed can be easily circumvented by either jumping to the content directly or changing a conditional branch to an unconditional. it can be made more difficult, of course -- setting important variables or other parts of the initialization in the middle of the test, checking at different parts of the script, stuff like that. but that's just security through obscurity with the goal of making removing the protection too much work to be worth the effort -- and as Rob said, simply loading some XML often is enough for that. there just is no truly secure way if you assume an attacker with enough time and knowledge. mark > > On 2/10/06, Jim Berkey <[EMAIL PROTECTED]> wrote: > >> No, the code wouldn't work on that game so I removed it - it's too > >> old > >> (version 4 or 5) - try leeching this: > >> http://jimbo.us/Games/Test.swf > >> http://jimbo.us/Games/Test.fla > >> http://jimbo.us/Games/Test.html > > > > http://snafoo.org/tmp/test.swf > > > > swfmill, about three minutes, admittedly helped by the fact there > > wasn't much code. i searched for a frame jump (swfmill swf2xml > > Test.swf | grep Goto), and simply put it at the beginning of the > > <DoAction/>, right after the string constant definitions: > > > > ... > > <String value="Hey Dood! This movie's copyrights are > > being infrin$ </strings> > > </Dictionary> > > <GotoFrame frame="4"/><!-- <<< inserted this here --> > > ... > > > > sorry, maybe it helps you to come up with a better solution. > > > > mark > > > > -- > > http://snafoo.org/ > > jabber: [EMAIL PROTECTED] > > > > _______________________________________________ > > osflash mailing list > > [email protected] > > http://osflash.org/mailman/listinfo/osflash_osflash.org > > > _______________________________________________ > osflash mailing list > [email protected] > http://osflash.org/mailman/listinfo/osflash_osflash.org > -- http://snafoo.org/ jabber: [EMAIL PROTECTED] _______________________________________________ osflash mailing list [email protected] http://osflash.org/mailman/listinfo/osflash_osflash.org
