[cfaussie] Re: Encrypted Source
Hi Dale, This might be helpful ;-) http://www.cse.unsw.edu.au/~matthewc/files/cfdecrypt.zip Best regards, Dmitry Yakhnov Web Developer http://www.yakhnov.info/ From: cfaussie@googlegroups.com [mailto:[EMAIL PROTECTED] On Behalf Of Dale Fraser Sent: Friday, October 13, 2006 6:48 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Encrypted Source I have some encrypted CFM templates that I need to decrypt. I tried using a tool to decrypt them but it asks for a password, surely if they need a password to decrypt CF server must know this password. Can someone tell me where this lives. Or some other way to decrypt the files. Regards Dale Fraser http://dale.fraser.id.au --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaussie@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cfaussie -~--~~~~--~~--~--~---
[cfaussie] Re: Encrypted Source
No the original developer was not a fool, and there are many things that went on in the background. It never got documented because there was a copy on the development server, and its a long story to boot. But Dale, I gave you a copy of this code? Senior Coldfusion Developer Aegeon Pty. Ltd. www.aegeon.com.au Phone:+613 8676 4223 Mobile: 0404 998 273 From: cfaussie@googlegroups.com [mailto:cfaussie@googlegroups.com] On Behalf Of Peter Tilbrook Sent: Friday, 13 October 2006 7:49 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source It is P-Code. ColdFusion does not need the password to execute it. You do need the password to decrypt it however. Sounds like you are screwed / or the original developer was a fool for not documenting the password. On 13/10/06, Dale Fraser [EMAIL PROTECTED] wrote: How did it compile the first time if it's encrypted and it doesn't know the password. Regards Dale Fraser http://dale.fraser.id.au From: cfaussie@googlegroups.com [mailto: cfaussie@googlegroups.com] On Behalf Of AJ Mercer Sent: Friday, 13 October 2006 19:05 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source as I understand it, coldfusion will be running the p-code, that is, it wont be compiling from the source each time it is run, and therefore will not need the password.. On 10/13/06, Dale Fraser [EMAIL PROTECTED] wrote: Peter, I used that tool. It is a customer's source code and encrypted by a previous developer who has forgotten the password. He is on this list if he wishes to confirm. So it's 100% legitimate, but CF must store the password somewhere to decrypt it. Regards Dale Fraser http://dale.fraser.id.au From: cfaussie@googlegroups.com [mailto: cfaussie@googlegroups.com] On Behalf Of Peter Tilbrook Sent: Friday, 13 October 2006 18:53 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source Contact the application author? Purchase the source code license? Otherwise it sounds a but.. dodgy. This tool might help: http://www.novabean.com/cfmdecrypt/ But I prefer to deploy as a J2EE application now. No more source code. -- Peter Tilbrook ColdGen Internet Solutions Manager, ACT and Region ColdFusion Users Group PO Box 2247 Queanbeyan, NSW, 2620 AUSTRALIA http://www.coldgen.com/ http://www.actcfug.com/ Tel: +61-2-6284-2727 Mob: +61-0432-897-437 -- Peter Tilbrook ColdGen Internet Solutions Manager, ACT and Region ColdFusion Users Group PO Box 2247 Queanbeyan, NSW, 2620 AUSTRALIA http://www.coldgen.com/ http://www.actcfug.com/ Tel: +61-2-6284-2727 Mob: +61-0432-897-437 Email: [EMAIL PROTECTED] --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaussie@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cfaussie -~--~~~~--~~--~--~---
[cfaussie] Re: Encrypted Source
Andrew, You gave me code that is 18 months old. The development server version is also encrypted. Regards Dale Fraser http://dale.fraser.id.au From: cfaussie@googlegroups.com [mailto:cfaussie@googlegroups.com] On Behalf Of Andrew Scott Sent: Monday, 16 October 2006 09:31 AM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source No the original developer was not a fool, and there are many things that went on in the background. It never got documented because there was a copy on the development server, and its a long story to boot. But Dale, I gave you a copy of this code? Senior Coldfusion Developer Aegeon Pty. Ltd. www.aegeon.com.au Phone:+613 8676 4223 Mobile: 0404 998 273 From: cfaussie@googlegroups.com [mailto:cfaussie@googlegroups.com] On Behalf Of Peter Tilbrook Sent: Friday, 13 October 2006 7:49 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source It is P-Code. ColdFusion does not need the password to execute it. You do need the password to decrypt it however. Sounds like you are screwed / or the original developer was a fool for not documenting the password. On 13/10/06, Dale Fraser [EMAIL PROTECTED] wrote: How did it compile the first time if it's encrypted and it doesn't know the password. Regards Dale Fraser http://dale.fraser.id.au From: cfaussie@googlegroups.com [mailto: cfaussie@googlegroups.com] On Behalf Of AJ Mercer Sent: Friday, 13 October 2006 19:05 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source as I understand it, coldfusion will be running the p-code, that is, it wont be compiling from the source each time it is run, and therefore will not need the password.. On 10/13/06, Dale Fraser [EMAIL PROTECTED] wrote: Peter, I used that tool. It is a customer's source code and encrypted by a previous developer who has forgotten the password. He is on this list if he wishes to confirm. So it's 100% legitimate, but CF must store the password somewhere to decrypt it. Regards Dale Fraser http://dale.fraser.id.au From: cfaussie@googlegroups.com [mailto: cfaussie@googlegroups.com] On Behalf Of Peter Tilbrook Sent: Friday, 13 October 2006 18:53 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source Contact the application author? Purchase the source code license? Otherwise it sounds a but.. dodgy. This tool might help: http://www.novabean.com/cfmdecrypt/ But I prefer to deploy as a J2EE application now. No more source code. -- Peter Tilbrook ColdGen Internet Solutions Manager, ACT and Region ColdFusion Users Group PO Box 2247 Queanbeyan, NSW, 2620 AUSTRALIA http://www.coldgen.com/ http://www.actcfug.com/ Tel: +61-2-6284-2727 Mob: +61-0432-897-437 -- Peter Tilbrook ColdGen Internet Solutions Manager, ACT and Region ColdFusion Users Group PO Box 2247 Queanbeyan, NSW, 2620 AUSTRALIA http://www.coldgen.com/ http://www.actcfug.com/ Tel: +61-2-6284-2727 Mob: +61-0432-897-437 Email: [EMAIL PROTECTED] --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaussie@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cfaussie -~--~~~~--~~--~--~---
[cfaussie] Re: Encrypted Source
Dale, I also said to you that it is code that was never touched since it was written. Senior Coldfusion Developer Aegeon Pty. Ltd. www.aegeon.com.au Phone:+613 8676 4223 Mobile: 0404 998 273 From: cfaussie@googlegroups.com [mailto:cfaussie@googlegroups.com] On Behalf Of Dale Fraser Sent: Monday, 16 October 2006 9:54 AM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source Andrew, You gave me code that is 18 months old. The development server version is also encrypted. Regards Dale Fraser http://dale.fraser.id.au From: cfaussie@googlegroups.com [mailto:cfaussie@googlegroups.com] On Behalf Of Andrew Scott Sent: Monday, 16 October 2006 09:31 AM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source No the original developer was not a fool, and there are many things that went on in the background. It never got documented because there was a copy on the development server, and its a long story to boot. But Dale, I gave you a copy of this code? Senior Coldfusion Developer Aegeon Pty. Ltd. www.aegeon.com.au Phone:+613 8676 4223 Mobile: 0404 998 273 From: cfaussie@googlegroups.com [mailto:cfaussie@googlegroups.com] On Behalf Of Peter Tilbrook Sent: Friday, 13 October 2006 7:49 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source It is P-Code. ColdFusion does not need the password to execute it. You do need the password to decrypt it however. Sounds like you are screwed / or the original developer was a fool for not documenting the password. On 13/10/06, Dale Fraser [EMAIL PROTECTED] wrote: How did it compile the first time if it's encrypted and it doesn't know the password. Regards Dale Fraser http://dale.fraser.id.au From: cfaussie@googlegroups.com [mailto: cfaussie@googlegroups.com] On Behalf Of AJ Mercer Sent: Friday, 13 October 2006 19:05 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source as I understand it, coldfusion will be running the p-code, that is, it wont be compiling from the source each time it is run, and therefore will not need the password.. On 10/13/06, Dale Fraser [EMAIL PROTECTED] wrote: Peter, I used that tool. It is a customer's source code and encrypted by a previous developer who has forgotten the password. He is on this list if he wishes to confirm. So it's 100% legitimate, but CF must store the password somewhere to decrypt it. Regards Dale Fraser http://dale.fraser.id.au From: cfaussie@googlegroups.com [mailto: cfaussie@googlegroups.com] On Behalf Of Peter Tilbrook Sent: Friday, 13 October 2006 18:53 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source Contact the application author? Purchase the source code license? Otherwise it sounds a but.. dodgy. This tool might help: http://www.novabean.com/cfmdecrypt/ But I prefer to deploy as a J2EE application now. No more source code. -- Peter Tilbrook ColdGen Internet Solutions Manager, ACT and Region ColdFusion Users Group PO Box 2247 Queanbeyan, NSW, 2620 AUSTRALIA http://www.coldgen.com/ http://www.actcfug.com/ Tel: +61-2-6284-2727 Mob: +61-0432-897-437 -- Peter Tilbrook ColdGen Internet Solutions Manager, ACT and Region ColdFusion Users Group PO Box 2247 Queanbeyan, NSW, 2620 AUSTRALIA http://www.coldgen.com/ http://www.actcfug.com/ Tel: +61-2-6284-2727 Mob: +61-0432-897-437 Email: [EMAIL PROTECTED] --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaussie@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cfaussie -~--~~~~--~~--~--~---
[cfaussie] Re: Encrypted Source
Dale, 1) Dale I offered you the code at 6pm, your message is time stamped at 6.49. 2) I do, because it came from the same code repository that I had 6 months ago with code that had been modified in Feb this year. 3) Yes I am sure And the copy of code I have here is from the development server, and this should not be debated in a public place. As I always had a daily personal backup of that code. Senior Coldfusion Developer Aegeon Pty. Ltd. www.aegeon.com.au Phone:+613 8676 4223 Mobile: 0404 998 273 From: cfaussie@googlegroups.com [mailto:cfaussie@googlegroups.com] On Behalf Of Dale Fraser Sent: Monday, 16 October 2006 10:01 AM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source Andrew, I realise that, but I posted this question before you gave me the code I dont know if the code you gave me has been changed if I cant decrypt the original. I didnt think you were 100% sure that the code hadnt changed in 18 months. Regards Dale Fraser http://dale.fraser.id.au From: cfaussie@googlegroups.com [mailto:cfaussie@googlegroups.com] On Behalf Of Andrew Scott Sent: Monday, 16 October 2006 09:55 AM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source Dale, I also said to you that it is code that was never touched since it was written. Senior Coldfusion Developer Aegeon Pty. Ltd. www.aegeon.com.au Phone:+613 8676 4223 Mobile: 0404 998 273 From: cfaussie@googlegroups.com [mailto:cfaussie@googlegroups.com] On Behalf Of Dale Fraser Sent: Monday, 16 October 2006 9:54 AM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source Andrew, You gave me code that is 18 months old. The development server version is also encrypted. Regards Dale Fraser http://dale.fraser.id.au From: cfaussie@googlegroups.com [mailto:cfaussie@googlegroups.com] On Behalf Of Andrew Scott Sent: Monday, 16 October 2006 09:31 AM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source No the original developer was not a fool, and there are many things that went on in the background. It never got documented because there was a copy on the development server, and its a long story to boot. But Dale, I gave you a copy of this code? Senior Coldfusion Developer Aegeon Pty. Ltd. www.aegeon.com.au Phone:+613 8676 4223 Mobile: 0404 998 273 From: cfaussie@googlegroups.com [mailto:cfaussie@googlegroups.com] On Behalf Of Peter Tilbrook Sent: Friday, 13 October 2006 7:49 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source It is P-Code. ColdFusion does not need the password to execute it. You do need the password to decrypt it however. Sounds like you are screwed / or the original developer was a fool for not documenting the password. On 13/10/06, Dale Fraser [EMAIL PROTECTED] wrote: How did it compile the first time if it's encrypted and it doesn't know the password. Regards Dale Fraser http://dale.fraser.id.au From: cfaussie@googlegroups.com [mailto: cfaussie@googlegroups.com] On Behalf Of AJ Mercer Sent: Friday, 13 October 2006 19:05 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source as I understand it, coldfusion will be running the p-code, that is, it wont be compiling from the source each time it is run, and therefore will not need the password.. On 10/13/06, Dale Fraser [EMAIL PROTECTED] wrote: Peter, I used that tool. It is a customer's source code and encrypted by a previous developer who has forgotten the password. He is on this list if he wishes to confirm. So it's 100% legitimate, but CF must store the password somewhere to decrypt it. Regards Dale Fraser http://dale.fraser.id.au From: cfaussie@googlegroups.com [mailto: cfaussie@googlegroups.com] On Behalf Of Peter Tilbrook Sent: Friday, 13 October 2006 18:53 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source Contact the application author? Purchase the source code license? Otherwise it sounds a but.. dodgy. This tool might help: http://www.novabean.com/cfmdecrypt/ But I prefer to deploy as a J2EE application now. No more source code. -- Peter Tilbrook ColdGen Internet Solutions Manager, ACT and Region ColdFusion Users Group PO Box 2247 Queanbeyan, NSW, 2620 AUSTRALIA http://www.coldgen.com/ http://www.actcfug.com/ Tel: +61-2-6284-2727 Mob: +61-0432-897-437 -- Peter Tilbrook ColdGen Internet Solutions Manager, ACT and Region ColdFusion Users Group PO Box 2247 Queanbeyan, NSW, 2620 AUSTRALIA http://www.coldgen.com/ http://www.actcfug.com/ Tel: +61-2-6284-2727 Mob: +61-0432-897-437 Email: [EMAIL PROTECTED] --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups cfaussie group
[cfaussie] Re: Encrypted Source
On 16/10/2006, at 10:03 AM, Andrew Scott wrote:and this should not be debated in a public placeOh I don't know, it's sort of like reality tv for geeks - when does the voting start...;-)(vague mutterings about the wonders of version control as he signs off) __Robin Hilliard --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaussie@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cfaussie -~--~~~~--~~--~--~---
[cfaussie] Re: Encrypted Source
*ROTFLMAO* Senior Coldfusion Developer Aegeon Pty. Ltd. www.aegeon.com.au Phone:+613 8676 4223 Mobile: 0404 998 273 From: cfaussie@googlegroups.com [mailto:cfaussie@googlegroups.com] On Behalf Of Robin Hilliard Sent: Monday, 16 October 2006 10:19 AM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source On 16/10/2006, at 10:03 AM, Andrew Scott wrote: and this should not be debated in a public place Oh I don't know, it's sort of like reality tv for geeks - when does the voting start... ;-) (vague mutterings about the wonders of version control as he signs off) __ Robin Hilliard --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaussie@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cfaussie -~--~~~~--~~--~--~---
[cfaussie] Re: Encrypted Source
as I understand it, coldfusion will be running the p-code, that is, it wont be compiling from the source each time it is run, and therefore will not need the password..On 10/13/06, Dale Fraser [EMAIL PROTECTED] wrote: Peter, I used that tool. It is a customer's source code and encrypted by a previous developer who has forgotten the password. He is on this list if he wishes to confirm. So it's 100% legitimate, but CF must store the password somewhere to decrypt it. Regards Dale Fraser http://dale.fraser.id.au From: cfaussie@googlegroups.com [mailto: cfaussie@googlegroups.com] On Behalf Of Peter Tilbrook Sent: Friday, 13 October 2006 18:53 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source Contact the application author? Purchase the source code license? Otherwise it sounds a but.. dodgy. This tool might help: http://www.novabean.com/cfmdecrypt/ But I prefer to deploy as a J2EE application now. No more source code. -- Peter Tilbrook ColdGen Internet Solutions Manager, ACT and Region ColdFusion Users Group PO Box 2247 Queanbeyan, NSW, 2620 AUSTRALIA http://www.coldgen.com/ http://www.actcfug.com/ Tel: +61-2-6284-2727 Mob: +61-0432-897-437 --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaussie@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cfaussie -~--~~~~--~~--~--~---
[cfaussie] Re: Encrypted Source
How did it compile the first time if its encrypted and it doesnt know the password. Regards Dale Fraser http://dale.fraser.id.au From: cfaussie@googlegroups.com [mailto:cfaussie@googlegroups.com] On Behalf Of AJ Mercer Sent: Friday, 13 October 2006 19:05 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source as I understand it, coldfusion will be running the p-code, that is, it wont be compiling from the source each time it is run, and therefore will not need the password.. On 10/13/06, Dale Fraser [EMAIL PROTECTED] wrote: Peter, I used that tool. It is a customer's source code and encrypted by a previous developer who has forgotten the password. He is on this list if he wishes to confirm. So it's 100% legitimate, but CF must store the password somewhere to decrypt it. Regards Dale Fraser http://dale.fraser.id.au From: cfaussie@googlegroups.com [mailto: cfaussie@googlegroups.com] On Behalf Of Peter Tilbrook Sent: Friday, 13 October 2006 18:53 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source Contact the application author? Purchase the source code license? Otherwise it sounds a but.. dodgy. This tool might help: http://www.novabean.com/cfmdecrypt/ But I prefer to deploy as a J2EE application now. No more source code. -- Peter Tilbrook ColdGen Internet Solutions Manager, ACT and Region ColdFusion Users Group PO Box 2247 Queanbeyan, NSW, 2620 AUSTRALIA http://www.coldgen.com/ http://www.actcfug.com/ Tel: +61-2-6284-2727 Mob: +61-0432-897-437 --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaussie@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cfaussie -~--~~~~--~~--~--~---
[cfaussie] Re: Encrypted Source
It is P-Code. ColdFusion does not need the password to execute it. You do need the password to decrypt it however.Sounds like you are screwed / or the original developer was a fool for not documenting the password. On 13/10/06, Dale Fraser [EMAIL PROTECTED] wrote: How did it compile the first time if it's encrypted and it doesn't know the password. Regards Dale Fraser http://dale.fraser.id.au From: cfaussie@googlegroups.com [mailto: cfaussie@googlegroups.com] On Behalf Of AJ Mercer Sent: Friday, 13 October 2006 19:05 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source as I understand it, coldfusion will be running the p-code, that is, it wont be compiling from the source each time it is run, and therefore will not need the password.. On 10/13/06, Dale Fraser [EMAIL PROTECTED] wrote: Peter, I used that tool. It is a customer's source code and encrypted by a previous developer who has forgotten the password. He is on this list if he wishes to confirm. So it's 100% legitimate, but CF must store the password somewhere to decrypt it. Regards Dale Fraser http://dale.fraser.id.au From: cfaussie@googlegroups.com [mailto: cfaussie@googlegroups.com] On Behalf Of Peter Tilbrook Sent: Friday, 13 October 2006 18:53 PM To: cfaussie@googlegroups.com Subject: [cfaussie] Re: Encrypted Source Contact the application author? Purchase the source code license? Otherwise it sounds a but.. dodgy. This tool might help: http://www.novabean.com/cfmdecrypt/ But I prefer to deploy as a J2EE application now. No more source code. -- Peter Tilbrook ColdGen Internet Solutions Manager, ACT and Region ColdFusion Users Group PO Box 2247 Queanbeyan, NSW, 2620 AUSTRALIA http://www.coldgen.com/ http://www.actcfug.com/ Tel: +61-2-6284-2727 Mob: +61-0432-897-437 -- Peter TilbrookColdGen Internet SolutionsManager, ACT and Region ColdFusion Users GroupPO Box 2247Queanbeyan, NSW, 2620AUSTRALIA http://www.coldgen.com/http://www.actcfug.com/Tel: +61-2-6284-2727Mob: +61-0432-897-437Email: [EMAIL PROTECTED] --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaussie@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cfaussie -~--~~~~--~~--~--~---