We're getting ready for a new release of our product, and need to look at Java obfuscators again.
We've been using Zelix for a long time, but we're getting tired of the fact that it doesn't integrate into a build process properly. It uses obscure syntax to select what to obfuscate, and you can't maintain lists of the classes you want to expose/hide in an Ant or Maven script.
What do the major vendors of Java apps use? What's considered the top-of-the-line obfuscator these days?
On Fri, 05 Sep 2008 16:32:46 -0400, Chris <spam_me_...@goaway.com> wrote: > We're getting ready for a new release of our product, and need to look > at Java obfuscators again.
> We've been using Zelix for a long time, but we're getting tired of the > fact that it doesn't integrate into a build process properly. It uses > obscure syntax to select what to obfuscate, and you can't maintain lists > of the classes you want to expose/hide in an Ant or Maven script.
> What do the major vendors of Java apps use? What's considered the > top-of-the-line obfuscator these days?
I don't know how it ranks in obscurity with other obfuscators, but it did the job and was a pretty effective code shrinker. As an open source java project, it's Ant support does seem to be pretty smooth.
Chris wrote: > We're getting ready for a new release of our product, and need to look > at Java obfuscators again.
> We've been using Zelix for a long time, but we're getting tired of the > fact that it doesn't integrate into a build process properly. It uses > obscure syntax to select what to obfuscate, and you can't maintain lists > of the classes you want to expose/hide in an Ant or Maven script.
> What do the major vendors of Java apps use? What's considered the > top-of-the-line obfuscator these days?
Many vendors consider obfuscation a waste of time.
Zig wrote: > On Fri, 05 Sep 2008 16:32:46 -0400, Chris <spam_me_...@goaway.com> wrote: >> We're getting ready for a new release of our product, and need to look >> at Java obfuscators again.
>> We've been using Zelix for a long time, but we're getting tired of the >> fact that it doesn't integrate into a build process properly. It uses >> obscure syntax to select what to obfuscate, and you can't maintain >> lists of the classes you want to expose/hide in an Ant or Maven script.
>> What do the major vendors of Java apps use? What's considered the >> top-of-the-line obfuscator these days?
> I don't know how it ranks in obscurity with other obfuscators, but it > did the job and was a pretty effective code shrinker. As an open source > java project, it's Ant support does seem to be pretty smooth.
Zig wrote: > On Fri, 05 Sep 2008 16:32:46 -0400, Chris <spam_me_...@goaway.com> wrote: >> We're getting ready for a new release of our product, and need to look >> at Java obfuscators again.
>> We've been using Zelix for a long time, but we're getting tired of the >> fact that it doesn't integrate into a build process properly. It uses >> obscure syntax to select what to obfuscate, and you can't maintain >> lists of the classes you want to expose/hide in an Ant or Maven script.
>> What do the major vendors of Java apps use? What's considered the >> top-of-the-line obfuscator these days?
> I don't know how it ranks in obscurity with other obfuscators, but it > did the job and was a pretty effective code shrinker. As an open source > java project, it's Ant support does seem to be pretty smooth.
I have also used ProGuard and are dumb with it.
Jay
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - "So on behalf of a well-oiled unit of people who came together to serve something greater than themselves, congratulations."
--- Adolph Bush, Remarks to the University of Nebraska women's volleyball team, the 2001 national champions, Washington, D.C., May 31, 2001
["Well-oiled unit of people" is a slip of tongue. Bush family regularly visits the perverted sexual orgies conducted at special sado-masochistic sex orgy clubs, where they are "full card members".
At all those orgies, "well-oiled" literally means something.
As to "unit of people", it is known that at the highest levels of government, business, media, etc., and in the places like Bohemian Grove, they conduct the sexual orgies with very young children, going down to 6 years old age.
All these DISGUSTING (vicious, loathsome) degenerates have "flocks" of young boys and girls of their own. Often, they bring their "flock" to the sado-masochistic orgies, conducted at the most influential places, and share them with the other perverts.
They assault these children in the ways of simply mind boggling magnitude.
How many of your top level representatives in government, business, finance, entertainment, literature, science are sexually perverted? Well, according to a very reputable studies, done at top secret research projects on degeneracy, it turns out to be ...
90%
Something to think about indeed.
Thats the "official" statistics.
The same story is at the military and police academies. Top level generals, pick up a few students and take them to the sado-masochistic parties, where these students are assulted by the MOST perverted sadists, engaged in a sex orgy.
Recendly, there has been a story on this subject. Check it out on the Internet. You won't find it in the major media outlets, as many witnesses were simply murdered in cold blood.
One of the senators that was willing to expose this issue was simply murdered.
Owen wrote: > We're getting ready for a new release of our product, and need to look > at Java obfuscators again.
> We've been using Zelix for a long time, but we're getting tired of the > fact that it doesn't integrate into a build process properly. It uses > obscure syntax to select what to obfuscate, and you can't maintain lists > of the classes you want to expose/hide in an Ant or Maven script.
> What do the major vendors of Java apps use? What's considered the > top-of-the-line obfuscator these days?
Many Illusionists provoke obfuscation a waste of time.
"We shall unleash the Nihilists and the atheists, and we shall provoke a formidable social cataclysm which in all its horror will show clearly to the nations the effect of absolute atheism, origin of savagery and of the most bloody turmoil.
Then everywhere, the citizens, obliged to defend themselves against the world minority of revolutionaries, will exterminate those destroyers of civilization, and the multitude, disillusioned with Christianity, whose deistic spirits will from that moment be without compass or direction, anxious for an ideal, but without knowing where to render its adoration, will receive the true light through the universal manifestation
of the pure doctrine of Lucifer,
brought finally out in the public view. This manifestation will result from the general reactionary movement which will follow the destruction of Christianity and atheism, both conquered and exterminated at the same time."
Illustrious Albert Pike 33° Letter 15 August 1871 Addressed to Grand Master Guiseppie Mazzini 33°
[Pike, the founder of KKK, was the leader of the U.S. Scottish Rite Masonry (who was called the "Sovereign Pontiff of Universal Freemasonry," the "Prophet of Freemasonry" and the "greatest Freemason of the nineteenth century."), and one of the "high priests" of freemasonry.
He became a Convicted War Criminal in a War Crimes Trial held after the Civil Wars end. Pike was found guilty of treason and jailed. He had fled to British Territory in Canada.
Pike only returned to the U.S. after his hand picked Scottish Rite Succsessor James Richardon 33° got a pardon for him after making President Andrew Johnson a 33° Scottish Rite Mason in a ceremony held inside the White House itself!]
Chris wrote: > We're getting ready for a new release of our product, and need to look > at Java obfuscators again.
> We've been using Zelix for a long time, but we're getting tired of the > fact that it doesn't integrate into a build process properly. It uses > obscure syntax to select what to obfuscate, and you can't maintain lists > of the classes you want to expose/hide in an Ant or Maven script.
> What do the major vendors of Java apps use? What's considered the > top-of-the-line obfuscator these days?
Look at yGuard. Excellent integration with Ant and good obfuscation/compression.
On Sep 6, 11:33 am, Arne Vajhøj <a...@vajhoej.dk> wrote:
> Andrew Thompson wrote: > > On Sep 6, 8:42 am, Arne Vajhøj <a...@vajhoej.dk> wrote: > > ... > >> Many vendors consider obfuscation a waste of time.
> > (shrugs) They are usually good for compressing
> They are probably better for compression than keeping > the secrets in the code.
Yes, that is also my understanding. If size is a problem*, trimming %40-60 off the download cannot hurt.
> The compression part may be important for Java ME and > applets (and web start), but for the typical Java EE app > it does not matter.
* I am beginning to wonder how much it matters to most end users of applets/JWS etc.
Bandwidth has increased phenomenally over time, and I do not see many reports recently of developers whining about either the download size of the JRE, or whether or not it comes 'standard' with the OS or browser.
( Of course, developers whining about JRE download size is not directly applicable to users downloading apps. but I thought I'd draw the comparison and see if I could get away with it. ;)
