ID: 24507 Updated by: [EMAIL PROTECTED] Reported By: ensophic at hotmail dot com -Status: Open +Status: Wont fix Bug Type: Feature/Change Request Operating System: Irrelevant PHP Version: Irrelevant New Comment:
A few things: 1. the way Zend Encoder (but also ionCube encoder) and SourceGuardian work are totally different. The first two products encrypt the compiled PHP code, which SourceGuardian only encrypts the script. The latter is very easy to reverse to a script (but maybe hard to read due to obfucsication). 2. The implementation suggest can only obfucsicate code, obfucsication is not a way to encrypt, or secure scripts. Security-by-obfucsication just doesn't buy you anything. 3. It's not up to PHP to provide these functions, as you say yourself it's against Open Source and it has little to do with the PHP language itself. Something like this should belong in an extension, for example source guardian. We're not going to add it -> Won't Fix Previous Comments: ------------------------------------------------------------------------ [2003-07-05 14:40:57] ensophic at hotmail dot com Description: ------------ I recommend that a code encryption function be added to PHP, similar to Zend Encoder or SourceGuardian Pro. For example: source_encrypt(code string, key string) could encrypt PHP code using a key. source_decrypt(encrypted_code string, key string) could decrypt PHP code and output the evaluated result of encrypted_code. This way, your PHP application could be a series of source_decrypt functions, and the end user wouldn't be able to access the PHP source code. I know this goes against open source, but many companies would greatly benefit from these functions (if not for speed, to save the money that would be spent on SourceGuardian Pro). ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=24507&edit=1
