Originally posted by .NETGuard
Remote vars s not safe at all, if you have valid credentials you only have to either hook the HTTP/S/TCP traffic or dump the assembly at runtime if they do use DynamicCompiling. That's why so much software get cracked easily.
The only thing you can do is Obfuscation, and yes as you stated you should really rely on very strong obfuscators, like
You must login or register to view this content. or even
You must login or register to view this content.
You bring up the problem of remote variables not being safe (despite it being a good measure) then claim that the solution is through obfuscation? I'm sure you're aware that security through obscurity is a mindless idea and if someone wants to truly secure their program, they should do so by writing a good authentication system that isn't reliant on obscuring their code. From my point of view, it seems like you're giving away bad advice in hopes of bringing in more customers to your own obfuscator.
The truth is, all security measures that you could possibly put into place are one's that should be put in place. While obfuscation
should be used in most circumstances, it should not be your primary concern when securing your program.
Very nice, but i learned the hard way years ago. Some computers have the same HWID so there isn't much you can do with it. You can probably use it as a salt though.
There is a nice HWID class I found on a StackOverflow thread a few years ago. When I was first getting started with auth, I ran into the issue of multiple users having the same processor-id, like you mentioned. Utilizing this
You must login or register to view this content., I was able to prevent that from occurring.