Zend encoder concerns ISP viruses and security - witch hunt?
Posted: Thu Dec 02, 2004 2:35 am
I have recently recieved a letter back from an ISP about why they have not installed on of my scripts for a client. It would seem to me that it would be clear that running a virus check and or testing the code on a dev machine would be par for any firm in the business of developing and running their own servers. But what really concerns me is that I cannot find any information that would alleviate their concerns. Does anyone have white paer sources or connections with Zend information on this?
Here's some of the wording they used.
Can anyone help me on this?
Thanks
Here's some of the wording they used.
I am also wondering about the capabilities of the ISP. They seem to be too cautious. They did not want to take on the job of creating a link harvester but now that I have done the work they seem to be overly interested in the source code. This also seems to me to be a sort smoke cloud as the client could very well upload any script via FTP and run it. This only involves them because they designed and created the site and have a maintenance contract with the client.We can have the harvester module setup quite quickly but our ISP has some
concerns as this is encrypted code. As you know we have other sites running
on your server which we are contractually obliged to maintain virus free.
I had hoped the function would not require access to the server components
themselves but now we have the code we can see that it does, so we can't
ring-fence it. The most viable options are that we move your site to its
own server, which will incur a cost in doing so, or we use un-encrypted
code and warrant to the developer that we won't use his IPR.
Can anyone help me on this?
Thanks