1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

BlackBeard's thoughts on pirated scripts

Discussion in 'Blogging' started by BlackBeard, May 30, 2009.

  1. BlackBeard

    BlackBeard Newbie

    Joined:
    May 29, 2009
    Messages:
    26
    Likes Received:
    9
    Let me start off by saying... I have no problem with piracy.

    Hell, my name is BlackBeard. And yes, I have one. :)

    I am just getting into Internet marketing, but I do information security oriented stuff for a living, including a lot of web app security, so I am looking fwd to learning Internet marketing from you guys and in sharing my technical knowledge etc..

    So - from a security perspective - here is my thought.

    I wouldn't be building an entire site around a pirated script. It's a really bad idea.

    Here are the things that WILL go wrong -

    1) You don't know if someone hacked a backdoor into the code, giving them access to your server. It's really easy to do. Are you going to read the source code? Do you know how? Do you know what to look for? If not - don't use it.

    But there's still #2

    2) There is a hole lurking in the application. Someone will find it and publish it to Bugtraq. An enterprising hacker will do a google search for vulnerable websites. You will get pwnd, and not have a way to get patches. Then what do you do? Your whole site is reliant on this software. Oops!

    There is TONS of open source software out there. Tons! You can get patches for it, and get it from a trusted source.

    Using pirated web scripts though, and relying on them, is asking to get pwnd.
     
    • Thanks Thanks x 1
    Last edited: May 30, 2009
  2. mark9510

    mark9510 Regular Member

    Joined:
    Feb 7, 2009
    Messages:
    309
    Likes Received:
    36
    Occupation:
    A Kid Making Money Off The Web
    Location:
    New York
    That is why its better to be safe than sorry unless the cracker is respected or known. Plus if you are going to create a big site you need to spend so spend on softwre
     
  3. BlackBeard

    BlackBeard Newbie

    Joined:
    May 29, 2009
    Messages:
    26
    Likes Received:
    9
    Even if the cracker is known... there's probably going to be a security bug in there somewhere. What will you do when the software you rely on becomes linkspam bait because other black hats want to ride on your PR? Or when your membership DB is hacked through sql injection? Or you end up with phishing websites hidden on your web server? I have seen all of these in real life.
     
  4. Deprecated

    Deprecated Registered Member

    Joined:
    May 19, 2009
    Messages:
    78
    Likes Received:
    25
    I don't touch stolen scripts either. An experienced coder could insert some code that would be very tough to spot unless someone took the time to go over every single line of code to see what it does. Right off the top of my head I know I could insert code that would let me execute server commands and log in to the admin interface without knowing the username and password.
     
  5. kingtrojan

    kingtrojan Junior Member

    Joined:
    Feb 28, 2008
    Messages:
    175
    Likes Received:
    167
    Occupation:
    Software Engineer
    Location:
    127.0.0.1
    Welcome Blackbeard ! I agree with you ..that's how i got a huge collection of warez Database ..:p
     
  6. simey69

    simey69 Regular Member

    Joined:
    Mar 27, 2009
    Messages:
    325
    Likes Received:
    1,478
    Location:
    UK
    Hi guys,

    Interesting to hear peoples views.

    For me, if the download is a pc application, then unless I really need it and other have given good feedback and virus checked it to oblivion, I wont even look at it.

    Scripts, now thats another matter lol...
    yes, I'll take other peoples scripts, nulled or not, encoded or not..
    I typically wouldn't use it as is nor install/run without checking it through for backdoors, callhomes or other unpleasant treasures.

    Thankfully, I'm a coder, so enjoy decoding/nulling and would normally strip a script for the bits I want or clone the function into another script.

    much of the time the high price tag these guys put on a script annoy me due to the simplcity or poor functionality of what you pay for.

    The only stuff I've really ever paid for is as tuF*at, $5 or less per script, typically fairly well written and then reshape into my own needs.

    on the other hand, if I ripped a script and it was worth it and it paid for it's own keep - I'd buy the original, never had that yet tho... ;)

    Si
     
  7. Alex Brooks

    Alex Brooks BANNED BANNED

    Joined:
    Mar 17, 2009
    Messages:
    1,199
    Likes Received:
    297
    I've been running pirated scripts for years, never been hacked.
     
  8. bijikpalir

    bijikpalir Regular Member

    Joined:
    Feb 27, 2009
    Messages:
    253
    Likes Received:
    34
    Location:
    Sarawak
    Use pirated scripts for make some money, use that money to buy original software.. if it really works!
     
  9. BlackBeard

    BlackBeard Newbie

    Joined:
    May 29, 2009
    Messages:
    26
    Likes Received:
    9
    Either that, or you never noticed. :cool:
     
    • Thanks Thanks x 1