http://disqus.com/people/53af36424529fa3a756dc6de641c67c8/enSun, 11 Nov 2007 09:46:50 -0000http://toxicsoftware.disqus.com/aquaticprime_warning/#comment-1655962This probably boils down to whether or not you believe that casual users can easily get hold of binary cracks, and if so, if they will use them.<br><br>Personally I am not of this belief. I have a popular product out there. and I see far more requests for cracks, than actual cracks, and that’s on forums such as torrentskickass, which although a popular forum, are really for the segment of Mac users <br>that you should not expect paying for your software.<br><br>That said, it might be a good idea if AquaticPrime stored the public key internally encrypted — as the poster of this blog noted, that is just a way of obfuscating things, and doesn’t affect the theoretic crackability of the program, but it would (to some degree) prevent a universal patch to affect all programs which use AquaticPrime, since the cracker would have to analyse the code, to figure out how to encrypt his replacement public key.Allan OdgaardThu, 08 Jun 2006 05:30:38 -0000http://toxicsoftware.disqus.com/aquaticprime_warning/#comment-1655965Daniel: Using a simple / symmetric license key scheme has the problem that once cracked, all future versions of the program will be free for the user who obtained the faked/leaked serial number — unless either a) the author tracks down all “fake” serials and black-list them, or b) he (regularly) change his license scheme (which requires sending out new license keys to all existing users.)<br><br>So the damage of a faked/leaked serial is much much worse than a binary crack alone for this reason. If a user is willing to track down a new binary crack, each time the program is updated, and often wait months for the crack to be available, then surely, he would never have paid the registration price.<br><br>I sent this the following to the macsb list, but let me repeat it here:<br><br>The purpose of Aquatic Prime is NOT to prevent a particular version of your application from being cracked, or even make it difficult to crack it.<br><br>Why? Because to run your program, the user needs the entire code, and that allows him to read it and make changes to it [1].<br><br>Time spent making it difficult to crack is roughly proportional with time required to crack it, so playing this game is a waste of time [2].<br><br>What it DOES DO is ensure that a binary crack IS a requirement. So if you want to point out flaws in the architecture, you should demonstrate that you can unlock an application WITHOUT altering the code of that application.<br><br>[1] At least until trusted computing arrives<br>[2] Automated code obfuscation could alter this.Allan OdgaardThu, 08 Jun 2006 10:31:37 -0000http://toxicsoftware.disqus.com/aquaticprime_warning/#comment-1655967schwa: this is why I suggested above that AP stores the public key encrypted — this should avoid the ability to blindly replace the key via some universal application.<br><br>FYI I do that in TM “just to be sure,” though I have seen several cracks of my application, but never have they targeted the public/private key system, as there is generally an easier way to get the application working as was it registered, in fact I would bet that many of the cracks done for TM took less than 30 minutes to produce, as the cracker just run the application in a debugger, and then figures out where to insert nop’s.Allan OdgaardThu, 08 Jun 2006 12:10:12 -0000http://toxicsoftware.disqus.com/tattoo_removal_for_cory/#comment-1655987$0 / $1000? So I take it that you do not believe enough in this to actually make a donation yourself? :pAllan OdgaardSun, 02 Jul 2006 00:55:55 -0000http://pug.disqus.com/key_binding_for_vertical_ellipsis/#comment-8324949Great idea — I’ve used it twice on IRC and both times people asked about it :)Allan OdgaardWed, 06 Jun 2007 10:24:27 -0000http://pug.disqus.com/textmate_034copy_undented034_command/#comment-8324597It would be nice to couple this with “Paste Selection Online” (maybe a checkbox).Allan OdgaardWed, 18 Jul 2007 09:04:23 -0000http://pug.disqus.com/034open_terminal_here034_and_lselect_glob_select_in_leopard_finder/#comment-8325282Nice icons! How about also doing one for the “<a href="http://lists.macromates.com/pipermail/textmate/2006-November/015314.html" rel="nofollow">Open TextMate Here</a>”? :)<br><br>I seem to recall reading somewhere how to re-create these open actions via Automator, so that they would not have the dreaded AppleScript startup delay and monochrome busy pointer &#8212; maybe this is better with Leopard though.Allan OdgaardSun, 28 Oct 2007 08:32:51 -0000http://pug.disqus.com/034open_in_textmate034_from_leopard_finder/#comment-8325322Thanks — works wonderfully! :)Allan OdgaardSun, 28 Oct 2007 11:59:25 -0000http://pug.disqus.com/displaying_utf_8_correctly_in_leopard_terminal/#comment-8325376I filled a <a href="http://pastie.textmate.org/111807" rel="nofollow">bug report regarding LANG</a> with <a href="http://bugreport.apple.com/" rel="nofollow">http://bugreport.apple.com/</a>.Allan OdgaardSun, 28 Oct 2007 17:46:28 -0000http://pug.disqus.com/hide_leopard_stack_overlays_in_finder/#comment-8325454Incase you don’t have the developer tools installed, using <code>chflags hidden «file»</code> should give the same result (i.e. hiding the file).<br><br>Also, you need a launchd job to unhide it during shutdown, and hide it again after system startup ;)Allan OdgaardSun, 11 Nov 2007 09:46:50 -0000