Path: csiph.com!goblin1!goblin.stu.neva.ru!uio.no!news.tele.dk!news.tele.dk!small.news.tele.dk!newsgate.cistron.nl!newsgate.news.xs4all.nl!nzpost1.xs4all.net!not-for-mail
Return-Path: <tyler@tysdomain.com>
X-Original-To: python-list@python.org
Delivered-To: python-list@mail.python.org
X-Spam-Status: OK 0.000
X-Spam-Evidence: '*H*': 1.00; '*S*': 0.00; '(python': 0.05; 'method.': 0.05; 'used.': 0.05; '*not*': 0.07; 'automate': 0.07; 'subject:code': 0.07; 'subject:question': 0.08; 'scripts': 0.09; 'hiding': 0.09; 'separately': 0.09; 'stealing': 0.09; 'that).': 0.09; 'python.': 0.11; 'anyway': 0.11; "'data'": 0.16; 'encryption': 0.16; 'from:addr:tyler': 0.16; 'from:addr:tysdomain.com': 0.16; 'from:name:littlefield, tyler': 0.16; 'gained': 0.16; 'identifiable': 0.16; 'message- id:@tysdomain.com': 0.16; 'received:10.0.0.11': 0.16; 'received:174.136': 0.16; 'received:tds-solutions.net': 0.16; 'relates': 0.16; 'reply-to:addr:tyler': 0.16; 'reply- to:addr:tysdomain.com': 0.16; 'ssh': 0.16; 'subject:Hiding': 0.16; 'wrote:': 0.16; 'example.': 0.18; "shouldn't": 0.18; 'to:2**1': 0.21; '(the': 0.22; 'fairly': 0.22; 'trying': 0.22; 'am,': 0.23; 'slightly': 0.23; 'thus': 0.24; 'header:In-Reply-To:1': 0.24; 'wondering': 0.25; 'script': 0.25; 'header:User-Agent:1': 0.26; 'command': 0.26; 'to:no real name:2**1': 0.27; 'question': 0.27; "they'll": 0.29; 'asked': 0.29; "i'm": 0.30; 'code': 0.30; "i'd": 0.31; 'guess': 0.31; "can't": 0.32; 'received:10.0.0': 0.32; 'options': 0.33; 'utility': 0.33; 'similar': 0.33; 'file': 0.34; 'received:10.0': 0.34; 'done': 0.35; 'identified': 0.35; 'quite': 0.35; 'something': 0.35; "isn't": 0.35; 'but': 0.36; 'possible': 0.36; '(and': 0.36; 'to:addr:python-list': 0.36; 'subject:: ': 0.37; 'received:10': 0.37; 'two': 0.37; 'method': 0.37; 'things': 0.38; 'anything': 0.38; 'files': 0.38; 'data': 0.39; 'subject:from': 0.39; 'easily': 0.39; 'to:addr:python.org': 0.40; 'questions': 0.40; 'secure': 0.60; 'show': 0.62; 'more': 0.63; 'here:': 0.63; 'encrypted': 0.66; "they're": 0.66; 'wanting': 0.66; 'laptop': 0.67; 'header:Reply-To:1': 0.67; 'reply-to:no real name:2**0': 0.71; 'programs,': 0.72; 'obvious': 0.76; 'blob': 0.84; 'care,': 0.91; 'different.': 0.91; 'obvious,': 0.91
X-Virus-Scanned: amavisd-new at tds-solutions.net
Date: Wed, 07 Oct 2015 08:00:26 -0400
From: "Littlefield, Tyler" <tyler@tysdomain.com>
Reply-To: tyler@tysdomain.com
User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.5.0
MIME-Version: 1.0
To: cl@isbd.net, python-list@python.org
Subject: Re: Hiding code from intruders, a different slant on an old question
References: <tp5fec-l15.ln1@esprimo.zbmc.eu>
In-Reply-To: <tp5fec-l15.ln1@esprimo.zbmc.eu>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
X-BeenThere: python-list@python.org
X-Mailman-Version: 2.1.20+
Precedence: list
List-Id: General discussion list for the Python programming language <python-list.python.org>
List-Unsubscribe: <https://mail.python.org/mailman/options/python-list>, <mailto:python-list-request@python.org?subject=unsubscribe>
List-Archive: <http://mail.python.org/pipermail/python-list/>
List-Post: <mailto:python-list@python.org>
List-Help: <mailto:python-list-request@python.org?subject=help>
List-Subscribe: <https://mail.python.org/mailman/listinfo/python-list>, <mailto:python-list-request@python.org?subject=subscribe>
Newsgroups: comp.lang.python
Message-ID: <mailman.453.1444219246.28679.python-list@python.org>
Lines: 48
NNTP-Posting-Host: 2001:888:2000:d::a6
X-Trace: 1444219246 news.xs4all.nl 23858 [2001:888:2000:d::a6]:45798
X-Complaints-To: abuse@xs4all.nl
Xref: csiph.com comp.lang.python:97479

On 10/7/2015 5:38 AM, cl@isbd.net wrote:
> I know questions similar to this are often asked but my reasons for
> wanting to do this (and thus ways it can be done) are slightly different.
>
> I have a number of little utility scripts (python and others) which I
> use to automate the process of decrypting and displaying things like
> files containing passwords.  
>
> The encryption I use is reasonably secure anyway but I'd like to hide
> the programs/methods I use so that:-
>
> 1 - The encrypted files are not identifiable as encrypted data (the file
> command just returns 'data' so they can't be identified by that).  If
> there's a script in my ~/bin directory that relates directly to the
> files it's obvious they're encrypted.
>
> 2 - The method used for encryption isn't obvious, again an obvious
> script will show the program I have used.
>

You have two options here:
1) Use a strong encryption like aes256 etc and don't bother trying to
"hide" the code because it's just a blob of data and they'll not crack it.
2) Encrypt the whole drive if you use something like *nix/*bsd.
The only thing hiding the code will do is make them guess at the method.
But if you use a good method in the firstplace, you shouldn't have any
issues because it's not going to be cracked.

> I *could* write a C program which just exec()'s the required programs,
> if they're done separately this would be fairly well hidden but I was
> wondering if there's anything more obvious I can do that enables me to
> do things easily in Python.
>
>
> This is for protecting against any possible intruder who has gained
> access to my system by breaking an ssh password or stealing my laptop
> for example.  It's *not* for hiding code that I'm giving to others,
> I'd be quite happy to give the code in question to people who might
> want to use it.
>


-- 
Take care,
Ty
http://tds-solutions.net
He that will not reason is a bigot; he that cannot reason is a fool; he that dares not reason is a slave.