Encrypting the source code

Discussion in 'ASP .Net Security' started by Mohammad Samara, Dec 5, 2003.

  1. Hello everybody,

    I have deployed an ASP.NET application for one of our clients, is there a
    way to hide or encrypt the source code of our application (C# code behind)
    from being diplayed by anyone else?

    Thanks.
     
    Mohammad Samara, Dec 5, 2003
    #1
    1. Advertising

  2. Mohammad,

    When you deploy an application, you should not deploy source code.

    Jim Cheshire, MCSE, MCSD [MSFT]
    Developer Support
    ASP.NET


    This post is provided as-is with no warranties and confers no rights.

    --------------------
    >From: "Mohammad Samara" <>
    >Subject: Encrypting the source code
    >Date: Fri, 5 Dec 2003 01:05:11 -0000
    >Lines: 9
    >X-Priority: 3
    >X-MSMail-Priority: Normal
    >X-Newsreader: Microsoft Outlook Express 6.00.3790.0
    >X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.0
    >Message-ID: <>
    >Newsgroups: microsoft.public.dotnet.framework.aspnet.security
    >NNTP-Posting-Host: 81-178-230-72.dsl.pipex.com 81.178.230.72
    >Path:

    cpmsftngxa07.phx.gbl!cpmsftngxa06.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP09.
    phx.gbl
    >Xref: cpmsftngxa07.phx.gbl

    microsoft.public.dotnet.framework.aspnet.security:7774
    >X-Tomcat-NG: microsoft.public.dotnet.framework.aspnet.security
    >
    >Hello everybody,
    >
    >I have deployed an ASP.NET application for one of our clients, is there a
    >way to hide or encrypt the source code of our application (C# code behind)
    >from being diplayed by anyone else?
    >
    >Thanks.
    >
    >
    >
     
    Jim Cheshire [MSFT], Dec 5, 2003
    #2
    1. Advertising

  3. Mohammad Samara

    Alek Davis Guest

    Mohammad,

    What Jim is saying is: You only need to deploy the following files: *.aspx,
    *.asax, Web.config, and *.dll (from the bin folder); you do not need to
    deploy *.cs, *.vb, *.sln, *.proj, and other files, which are only used by
    VS.NET and are not required by IIS.

    Alek

    "Jim Cheshire [MSFT]" <> wrote in message
    news:hCF$...
    > Mohammad,
    >
    > When you deploy an application, you should not deploy source code.
    >
    > Jim Cheshire, MCSE, MCSD [MSFT]
    > Developer Support
    > ASP.NET
    >
    >
    > This post is provided as-is with no warranties and confers no rights.
    >
    > --------------------
    > >From: "Mohammad Samara" <>
    > >Subject: Encrypting the source code
    > >Date: Fri, 5 Dec 2003 01:05:11 -0000
    > >Lines: 9
    > >X-Priority: 3
    > >X-MSMail-Priority: Normal
    > >X-Newsreader: Microsoft Outlook Express 6.00.3790.0
    > >X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.0
    > >Message-ID: <>
    > >Newsgroups: microsoft.public.dotnet.framework.aspnet.security
    > >NNTP-Posting-Host: 81-178-230-72.dsl.pipex.com 81.178.230.72
    > >Path:

    >

    cpmsftngxa07.phx.gbl!cpmsftngxa06.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP09.
    > phx.gbl
    > >Xref: cpmsftngxa07.phx.gbl

    > microsoft.public.dotnet.framework.aspnet.security:7774
    > >X-Tomcat-NG: microsoft.public.dotnet.framework.aspnet.security
    > >
    > >Hello everybody,
    > >
    > >I have deployed an ASP.NET application for one of our clients, is there a
    > >way to hide or encrypt the source code of our application (C# code

    behind)
    > >from being diplayed by anyone else?
    > >
    > >Thanks.
    > >
    > >
    > >

    >
     
    Alek Davis, Dec 6, 2003
    #3
  4. Moveover, if you are worried about someone getting into the source in the
    dll then you could always use the community obfuscator (did i spell that
    right) that comes with vs.net 2003..

    Hope this helps!


    "Alek Davis" <alek_xDOTx_davis_xATx_intel_xDOTx_com> wrote in message
    news:...
    > Mohammad,
    >
    > What Jim is saying is: You only need to deploy the following files:

    *.aspx,
    > *.asax, Web.config, and *.dll (from the bin folder); you do not need to
    > deploy *.cs, *.vb, *.sln, *.proj, and other files, which are only used by
    > VS.NET and are not required by IIS.
    >
    > Alek
    >
    > "Jim Cheshire [MSFT]" <> wrote in message
    > news:hCF$...
    > > Mohammad,
    > >
    > > When you deploy an application, you should not deploy source code.
    > >
    > > Jim Cheshire, MCSE, MCSD [MSFT]
    > > Developer Support
    > > ASP.NET
    > >
    > >
    > > This post is provided as-is with no warranties and confers no rights.
    > >
    > > --------------------
    > > >From: "Mohammad Samara" <>
    > > >Subject: Encrypting the source code
    > > >Date: Fri, 5 Dec 2003 01:05:11 -0000
    > > >Lines: 9
    > > >X-Priority: 3
    > > >X-MSMail-Priority: Normal
    > > >X-Newsreader: Microsoft Outlook Express 6.00.3790.0
    > > >X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.0
    > > >Message-ID: <>
    > > >Newsgroups: microsoft.public.dotnet.framework.aspnet.security
    > > >NNTP-Posting-Host: 81-178-230-72.dsl.pipex.com 81.178.230.72
    > > >Path:

    > >

    >

    cpmsftngxa07.phx.gbl!cpmsftngxa06.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP09.
    > > phx.gbl
    > > >Xref: cpmsftngxa07.phx.gbl

    > > microsoft.public.dotnet.framework.aspnet.security:7774
    > > >X-Tomcat-NG: microsoft.public.dotnet.framework.aspnet.security
    > > >
    > > >Hello everybody,
    > > >
    > > >I have deployed an ASP.NET application for one of our clients, is there

    a
    > > >way to hide or encrypt the source code of our application (C# code

    > behind)
    > > >from being diplayed by anyone else?
    > > >
    > > >Thanks.
    > > >
    > > >
    > > >

    > >

    >
    >
     
    Daniel J Rodriguez, Dec 6, 2003
    #4
  5. hai

    Obfuscators make it harder to decompile .NET IL into C#
    code.

    For more info on "Obfuscators", check
    http://www.gotdotnet.com/team/csharp/tools/default.aspx

    But if u deploy the following files:
    *.aspx, *.asax, Web.config, and *.dll (from the bin
    folder), I think there is no need for Obfuscators.

    warm regards,
    Arun Ganesh.
    ..NET MVP
    >-----Original Message-----
    >Moveover, if you are worried about someone getting into

    the source in the
    >dll then you could always use the community obfuscator

    (did i spell that
    >right) that comes with vs.net 2003..
    >
    >Hope this helps!
    >
    >deploy the following files:
    >*.aspx,
    >> *.asax, Web.config, and *.dll (from the bin folder);

    >"Alek Davis" <alek_xDOTx_davis_xATx_intel_xDOTx_com>

    wrote in message
    >news:...
    >> Mohammad,
    >>
    >> What Jim is saying is: You only need to you do not

    need to
    >> deploy *.cs, *.vb, *.sln, *.proj, and other files,

    which are only used by
    >> VS.NET and are not required by IIS.
    >>
    >> Alek
    >>
    >> "Jim Cheshire [MSFT]" <>

    wrote in message
    >> news:hCF$...
    >> > Mohammad,
    >> >
    >> > When you deploy an application, you should not

    deploy source code.
    >> >
    >> > Jim Cheshire, MCSE, MCSD [MSFT]
    >> > Developer Support
    >> > ASP.NET
    >> >
    >> >
    >> > This post is provided as-is with no warranties and

    confers no rights.
    >> >
    >> > --------------------
    >> > >From: "Mohammad Samara"

    <>
    >> > >Subject: Encrypting the source code
    >> > >Date: Fri, 5 Dec 2003 01:05:11 -0000
    >> > >Lines: 9
    >> > >X-Priority: 3
    >> > >X-MSMail-Priority: Normal
    >> > >X-Newsreader: Microsoft Outlook Express 6.00.3790.0
    >> > >X-MimeOLE: Produced By Microsoft MimeOLE

    V6.00.3790.0
    >> > >Message-ID: <>
    >> > >Newsgroups:

    microsoft.public.dotnet.framework.aspnet.security
    >> > >NNTP-Posting-Host: 81-178-230-72.dsl.pipex.com

    81.178.230.72
    >> > >Path:
    >> >

    >>

    >cpmsftngxa07.phx.gbl!cpmsftngxa06.phx.gbl!

    TK2MSFTNGP08.phx.gbl!TK2MSFTNGP09.
    >> > phx.gbl
    >> > >Xref: cpmsftngxa07.phx.gbl
    >> >

    microsoft.public.dotnet.framework.aspnet.security:7774
    >> > >X-Tomcat-NG:

    microsoft.public.dotnet.framework.aspnet.security
    >> > >
    >> > >Hello everybody,
    >> > >
    >> > >I have deployed an ASP.NET application for one of

    our clients, is there
    >a
    >> > >way to hide or encrypt the source code of our

    application (C# code
    >> behind)
    >> > >from being diplayed by anyone else?
    >> > >
    >> > >Thanks.
    >> > >
    >> > >
    >> > >
    >> >

    >>
    >>

    >
    >
    >.
    >
     
    G.Gnana Arun Ganesh, Dec 9, 2003
    #5
  6. One thing that might help Mohammad is to read the documentation on the
    different options available when copying projects. If you choose "Only
    files needed to run this application", VS.NET will only copy over those
    files with a Build Action of Content. Your source files will have a Build
    Action of Compile and will not be copied.

    Jim Cheshire, MCSE, MCSD [MSFT]
    Developer Support
    ASP.NET


    This post is provided as-is with no warranties and confers no rights.

    --------------------
    >Content-Class: urn:content-classes:message
    >From: "G.Gnana Arun Ganesh" <>
    >Sender: "G.Gnana Arun Ganesh" <>
    >References: <>

    <hCF$>
    <>
    <>
    >Subject: Re: Encrypting the source code
    >Date: Tue, 9 Dec 2003 08:11:43 -0800
    >Lines: 105
    >Message-ID: <103b01c3be6f$232ee8f0$>
    >MIME-Version: 1.0
    >Content-Type: text/plain;
    > charset="iso-8859-1"
    >Content-Transfer-Encoding: 7bit
    >X-Newsreader: Microsoft CDO for Windows 2000
    >X-MIMEOLE: Produced By Microsoft MimeOLE V5.50.4910.0300
    >thread-index: AcO+byMuV3sYf8GGQgS/OPSyy0FbOA==
    >Newsgroups: microsoft.public.dotnet.framework.aspnet.security
    >Path: cpmsftngxa07.phx.gbl
    >Xref: cpmsftngxa07.phx.gbl

    microsoft.public.dotnet.framework.aspnet.security:7824
    >NNTP-Posting-Host: tk2msftngxa12.phx.gbl 10.40.1.164
    >X-Tomcat-NG: microsoft.public.dotnet.framework.aspnet.security
    >
    >hai
    >
    >Obfuscators make it harder to decompile .NET IL into C#
    >code.
    >
    >For more info on "Obfuscators", check
    >http://www.gotdotnet.com/team/csharp/tools/default.aspx
    >
    >But if u deploy the following files:
    >*.aspx, *.asax, Web.config, and *.dll (from the bin
    >folder), I think there is no need for Obfuscators.
    >
    >warm regards,
    >Arun Ganesh.
    >.NET MVP
    >>-----Original Message-----
    >>Moveover, if you are worried about someone getting into

    >the source in the
    >>dll then you could always use the community obfuscator

    >(did i spell that
    >>right) that comes with vs.net 2003..
    >>
    >>Hope this helps!
    >>
    >>deploy the following files:
    >>*.aspx,
    >>> *.asax, Web.config, and *.dll (from the bin folder);

    >>"Alek Davis" <alek_xDOTx_davis_xATx_intel_xDOTx_com>

    >wrote in message
    >>news:...
    >>> Mohammad,
    >>>
    >>> What Jim is saying is: You only need to you do not

    >need to
    >>> deploy *.cs, *.vb, *.sln, *.proj, and other files,

    >which are only used by
    >>> VS.NET and are not required by IIS.
    >>>
    >>> Alek
    >>>
    >>> "Jim Cheshire [MSFT]" <>

    >wrote in message
    >>> news:hCF$...
    >>> > Mohammad,
    >>> >
    >>> > When you deploy an application, you should not

    >deploy source code.
    >>> >
    >>> > Jim Cheshire, MCSE, MCSD [MSFT]
    >>> > Developer Support
    >>> > ASP.NET
    >>> >
    >>> >
    >>> > This post is provided as-is with no warranties and

    >confers no rights.
    >>> >
    >>> > --------------------
    >>> > >From: "Mohammad Samara"

    ><>
    >>> > >Subject: Encrypting the source code
    >>> > >Date: Fri, 5 Dec 2003 01:05:11 -0000
    >>> > >Lines: 9
    >>> > >X-Priority: 3
    >>> > >X-MSMail-Priority: Normal
    >>> > >X-Newsreader: Microsoft Outlook Express 6.00.3790.0
    >>> > >X-MimeOLE: Produced By Microsoft MimeOLE

    >V6.00.3790.0
    >>> > >Message-ID: <>
    >>> > >Newsgroups:

    >microsoft.public.dotnet.framework.aspnet.security
    >>> > >NNTP-Posting-Host: 81-178-230-72.dsl.pipex.com

    >81.178.230.72
    >>> > >Path:
    >>> >
    >>>

    >>cpmsftngxa07.phx.gbl!cpmsftngxa06.phx.gbl!

    >TK2MSFTNGP08.phx.gbl!TK2MSFTNGP09.
    >>> > phx.gbl
    >>> > >Xref: cpmsftngxa07.phx.gbl
    >>> >

    >microsoft.public.dotnet.framework.aspnet.security:7774
    >>> > >X-Tomcat-NG:

    >microsoft.public.dotnet.framework.aspnet.security
    >>> > >
    >>> > >Hello everybody,
    >>> > >
    >>> > >I have deployed an ASP.NET application for one of

    >our clients, is there
    >>a
    >>> > >way to hide or encrypt the source code of our

    >application (C# code
    >>> behind)
    >>> > >from being diplayed by anyone else?
    >>> > >
    >>> > >Thanks.
    >>> > >
    >>> > >
    >>> > >
    >>> >
    >>>
    >>>

    >>
    >>
    >>.
    >>

    >
     
    Jim Cheshire [MSFT], Dec 9, 2003
    #6
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Marshall Dudley

    encrypting and decrypting with perl

    Marshall Dudley, Jan 27, 2005, in forum: Perl
    Replies:
    1
    Views:
    754
    Brian McCauley
    Jan 27, 2005
  2. Mohammad Samara

    Encrypting the source code

    Mohammad Samara, Dec 5, 2003, in forum: ASP .Net
    Replies:
    3
    Views:
    397
    Arun Ganesh [Microsoft MVP]
    Dec 5, 2003
  3. Mike

    Encrypting Java Code

    Mike, Oct 31, 2005, in forum: Java
    Replies:
    5
    Views:
    2,657
    Roedy Green
    Oct 31, 2005
  4. Keith G Hicks
    Replies:
    0
    Views:
    154
    Keith G Hicks
    Apr 5, 2008
  5. Jason Davis

    Encrypting JS Code on wscript

    Jason Davis, Sep 13, 2003, in forum: Javascript
    Replies:
    1
    Views:
    111
    Ira Baxter
    Sep 14, 2003
Loading...

Share This Page