Would this method be good to encrypt configuration files?

Discussion in 'Plugin Development' started by TurtlesBeast23, Nov 19, 2017.

Thread Status:
Not open for further replies.
  1. Offline

    TurtlesBeast23

    So, I'm thinking if we should create a custom C++ application called the DiamondCreeper Services Configuration Registry Value (.dcscrvf) and only our servers have this software installed so that only Java plugin installed and only we can read or amend the values within the file, so that even if a hacker tries to read confidential information such as database details from configuration files, they are unable to because they don't have our software that can read or amend the values. But I'm wondering if this would be a good idea?

    Thanks,
    TurtlesBeast23
     
    TurtlesBeast23, Nov 19, 2017
    #1
  2. Offline

    timtower Administrator Administrator Moderator

    timtower, Nov 19, 2017
    #2
  3. Offline

    TurtlesBeast23

    Oh, it also asks for the password before the file can be opened, so basically the only way to read the data is by brute force or unavoidable hacks :) Also, I'm going to fork Bukkit so that all the configuration is stored in a folder named "registry" and the folder is locked so that it requires the administrator credentials to be entered to continue :)
     
    Last edited: Nov 19, 2017
    TurtlesBeast23, Nov 19, 2017
    #3
Thread Status:
Not open for further replies.

Share This Page