On Jun 16, 2006, at 3:06 AM, Kris Leech wrote:
> It would be an advantage to compile the whole Rails framework and the
> standard libary to prevent code injection. If of course possible?

It would take significant work to prevent code injection, at the very  
least you would need to:

Obfuscate all .rb files your program uses into C files (including  
anything in stdlib)
Provide a custom C main() to invoke your obfuscated libraries
Statically link Ruby, your main() and your obfuscated C files
Remove rb_require from Ruby
Remove RUBYOPT and -r flags from Ruby

You may even need to write your application to work with $SAFE >= 1,  
depending on how much your code allows users to interact with its  
internals.

ZenObfuscate only prevents Ruby2Ruby from reassembling your IP.

-- 
Eric Hodel - drbrain / segment7.net - http://blog.segment7.net
This implementation is HODEL-HASH-9600 compliant

http://trackmap.robotcoop.com