Howto Encrypt & Run Bash script File

nabeeliumattack · 05-13-2008, 04:45 PM

Hi,

I have written bash script file but I have one problem

my code, I don't want any one read my code ( manager only can read the code )

But If I encrypt this script if I run it it can be run simply like any script using

sh filename.sh

but If any one try to open this script to read the code

no thing from I have written can be seen

only I want to give permition to run it only

I don't want methods like "crypt" command it can encrypt but can't be executed

also I want any method to decrypt this file using password or something like that for me only

thanks alot, bye

unSpawn · 05-13-2008, 05:01 PM

In short encryption is pretty much worthless since it a) needs to be decrypted before execution, b) reside somewhere unprotected upon execution and c) the root account user can read everything anyway. Protection schemes aren't true F/OSS spirit anyway IMNSHO.

SlowCoder · 05-13-2008, 08:00 PM

Quote:

Originally Posted by unSpawn

Protection schemes aren't true F/OSS spirit anyway IMNSHO.

I read it more like a security thing than an "I wrote it, it's mine and I ain't sharing" thing. It could be that the OP is trying to keep normal users from being able to see how the script does something. It would be more difficult for someone to find a hole in your firewall if they don't have access to your scripts, right?

chrism01 · 05-13-2008, 08:37 PM

As per unSpawn, what you're asking is more or less not possible.
What you could do is use sudo to ensure that users can only run it, but not see the src.
Either give the script its own 'owner' or give it to root.

knudfl · 05-13-2008, 10:14 PM

I once used this:
http://www.datsi.fi.upm.es/%7Efrosal/
"Shc is a generic shell script compiler. It takes a script which is specified
on the command line and produces C source code. The generated source code
is then compiled and linked to produce a stripped binary executable."

chrism01 · 05-14-2008, 02:06 AM

Interesting, let us know how well that works for you...

unSpawn · 05-15-2008, 06:03 AM

Quote:

Originally Posted by SlowCoder

I read it more like a security thing than an "I wrote it, it's mine and I ain't sharing" thing. It could be that the OP is trying to keep normal users from being able to see how the script does something. It would be more difficult for someone to find a hole in your firewall if they don't have access to your scripts, right?

Could be, sure, but since the OP didn't post back yet all that remains is speculation.

Quote:

Originally Posted by knudfl

I once used (..) Shc

See related threads (mostly in the Linux Security forum) and Limitations of shc, a Shell Encryption Utility (Linuxjournal, 2005)?

nabeeliumattack · 05-17-2008, 05:58 PM

Many thanks all of you ,

I think the best way to do my mission by using Shc

using C language I can do what I want then I can run encrypted file

I love all of you , sorry iam so busy now a days

My Holiday is in 15-6-2008 after this day I will try to do this