| Les |
| (KiX Master) |
| 2004-01-02 02:06 AM |
MakeEXE
|
[Moderators note: I tried to copy the original topic to the general forum as it had drifted off-topic with the intention to remove just the off-topiic portions while keeping the rest of the thread. Unfortunately this can no longer be done since moving to UBB.Threads so I had to repost.. The moved thread is HERE. ]
Now that KiX can pre-tokenize/encrypt/shrink the scripts, I think it should also be able to embed the script into a single EXE. I envision a lean EXE with the tokenizer, debug, keyword lists, etc. stripped out to make the resultant EXE as small as possible. There are lots of good reasons to make the EXE as small as possible, but mainly because bandwidth is a terrible thing to waste.
I first made this suggestion on SL's beta forum Thoughts: 4.50 - tokenizer (external app?) but since it is slightly off topic there, and since it did not generate the interest there that I had hoped for, started a separate thread here.
There are already a couple of ways (KiXScripts Editor and KiXCrypt) to put everything into a single EXE, but they mostly rely on temporary files. I believe also, that there is a tempfileless version of KiXCrypt in the works.
A single EXE would simplify distribution of applets, ease versioning, and eliminate the number of round trips on searching for the external .KX file. It would also ease the deployment of GPO based scripts which don't take well to external pathing.
The implementation of MakeEXE should be such that it could be scripted on the command line or by API so that KiXScripts Editor could choose to leverage this approach over their existing one.
On the topic of security, I recognize that this would still be 'security by ignorance' and that nobody should misconstrue this as "Secure". To that end, I point you to Ruud's comments within the discussion Thoughts: 4.50 - INCLUDE (his first reply)where he says "In general, you should never, ever, put truly sensitive information in any shape or form within the users security context. Whether or not passwords in scripts are truly sensitive depends on your specific situation."
| Arend_ |
| (MM club member) |
| 2006-02-23 09:18 AM |
|
Re: MakeEXE
|
I Agree, it would be very nice to deploy Applications as well. For instance some people in a domain would get a packaged form of a user manager written in kix using kixforms.
Richard H.
|
| (KiX Supporter) |
| 2006-02-23 10:31 AM |
|
Re: MakeEXE
|
Don't forget that if you strip it down some things won't work - Execute() is the most obvious.
BTW, the "templess" option in KiXcrypt never progressed past the beta stage due to lack of interest.
| Les |
| (KiX Master) |
| 2006-02-23 02:57 PM |
|
Re: MakeEXE
|
OK, then leave the tokenizer in.
| Radimus |
| (KiX Supporter) |
| 2006-02-23 03:13 PM |
|
|
Re: MakeEXE
|
I 'deploy' lots of iexpress packaged scripts. None of which are sensitive or contain passwords.
I include wkix32 and all externals (if necessary) and use @scriptdir for any local references if necessary