Makes lua files harder to read via encryption
License is Unlicense (public domain)
See README for more information
https://github.com/monolifed/saferlove
saferlove: Use encrypted and signed lua files
saferlove: Use encrypted and signed lua files
Last edited by monolifed on Tue Jun 08, 2021 7:30 am, edited 6 times in total.
Re: saferlove: Use encrypted and signed lua files
Now we can just point people to this project and let them obtain common wisdom the hard way.
- zorg
- Party member
- Posts: 3436
- Joined: Thu Dec 13, 2012 2:55 pm
- Location: Absurdistan, Hungary
- Contact:
Re: saferlove: Use encrypted and signed lua files
Me and my stuff True Neutral Aspirant. Why, yes, i do indeed enjoy sarcastically correcting others when they make the most blatant of spelling mistakes. No bullying or trolling the innocent tho.
Re: saferlove: Use encrypted and signed lua files
Changed license to Unlicense (public domain)
exceptions:
toast.lua_temp (example file, part of love2d)
monocypher.c/h (it is also public domain but CC0)
exceptions:
toast.lua_temp (example file, part of love2d)
monocypher.c/h (it is also public domain but CC0)
Re: saferlove: Use encrypted and signed lua files
(probably said a lot, but still needed)
The term obfuscated is more suited; encryption implies that the information should not be understood by public ways (even if using encryption algorithms, better not fool ourselves when talking security).
I would also say that it is probably even easier for an "attacker" with this method to get the original content instead of spending time understanding bytecode or obfuscated Lua code. If a script is made to counter your library, any game using it could be deobfuscated with a single command.
Signing files can be useful, but you could create a signature for the game distribution directly (love file, etc.) and some platforms will already do that.
The term obfuscated is more suited; encryption implies that the information should not be understood by public ways (even if using encryption algorithms, better not fool ourselves when talking security).
I would also say that it is probably even easier for an "attacker" with this method to get the original content instead of spending time understanding bytecode or obfuscated Lua code. If a script is made to counter your library, any game using it could be deobfuscated with a single command.
Signing files can be useful, but you could create a signature for the game distribution directly (love file, etc.) and some platforms will already do that.
Re: saferlove: Use encrypted and signed lua files
You could have read the warning section of the README first
Who is online
Users browsing this forum: No registered users and 52 guests