Zend Optimizer Zend Optimizer is now obsolete because it's included in PHP 5.3 and later. It is made available free of charge to users of earlier versions of PHP. Zend Optimizer is loaded as a PHP engine extension. This extension, automatically optimizes PHP scripts, and transparently detects and loads encoded files. The Zend Optimizer™ boosts PHP performance by going over the intermediate code generated by the standard Zend run-time compiler andoptimizing it for faster execution.

In addition, it runs the files encoded by Zend Guard, while enhancing the running speed of PHP applications.

Dennis Cole There is not a way to encrypt something so that is is totaly, positivly, iriversable. As for someone at zend looking at them, there probably is, but they have a duty not to do anything with them. -----Original Message----- From: Thomas Johnsson Sent: Monday, February 24, 2003 11:51 AM To: php-general@lists. Windows Xp Professional Service Pack 1 Full Download. php.net Subject: [PHP] Zend Encoder This might sound a bit paranoid, but since I don't know how it works, i'll ask anyway.

In simple words, PHP Loader is a PHP extension responsible for reading and executing PHP files encoded with a corresponding encoding product. Currently, we provide three most popular PHP Loaders to decrypt protected applications on our shared servers: IonCube Loader, Zend Guard Loader and Source Guardian. Zend does not have a way to decode a php file that was encoded using Zend Encoder. To decode a php file that was encoded using Zend. Ioncube products.

If I encrypt a file using the Zend Encoder, is there anyone at zend at Feb 24, 2003 at 8:01 pm. Thomas Johnsson So what you are saying is that zend probably has a way of un-encoding the encoded files, if they where able to get their hands on them?

I'm not saying they would, but if they could, it would be totally wrong in my opinion. As for having something 100% irreversible, even I'm not as naive to thing that;) I know that a hacker could do it if he just set his mind to it. They just broke this encryption code. There is not a way to encrypt something so that is is totaly, positivly, iriversable. As for someone at zend looking at them, there probably is, but they have a duty not to do anything with them.So what you are saying is that zend probably has a way of un-encoding the encoded files, if they where able to get their hands on them? I'm not saying they would, but if they could, it would be totally wrong in my opinion.

As for having something 100% irreversible, even I'm not as naive to thing that;) I know that a hacker could do it if he just set his mind to it. They just broke this encryption code.

Regards, // Thomas. Mutoh Maintenance Engineer Assistant Seattle. Brad Young Hi, Allow me to clear the air: 1. Zend does not have a way to decode a php file that was encoded using Zend Encoder. (For those of you paying attention to details, note the word 'decode', not 'decrypt'. Zend Encoder does not encrypt.

US gov't lawyers, please take note:) 2. Even the inherent knowledge that Zend has about our own product would not enable us to access encoded software. At most, we theoretically could develop code that could access some of the string elements in a script, but at Feb 25, 2003 at 11:30 am. Hi, Allow me to clear the air: 1. Zend does not have a way to decode a php file that was encoded using Zend Encoder.

(For those of you paying attention to details, note the word 'decode', not 'decrypt'. Zend Encoder does not encrypt. US gov't lawyers, please take note:) 2. Even the inherent knowledge that Zend has about our own product would not enable us to access encoded software.

At most, we theoretically could develop code that could access some of the string elements in a script, but definitely not any actual code. (As a comparison, it would be like looking at a.EXE file in Windows, but even more convoluted.) Needless to say, even this minor capability has never and will never be developed or utilized by Zend. Zend Encoder is the most secure way to deliver php code. That said, no protection scheme is absolutely 100% protected. Brad ______________________________ Brad Young Director, Product Marketing brad@zend.com www.zend.com Zend - The PHP Company. Even the inherent knowledge that Zend has about our own product would not enable us to access encoded software. At most, we theoretically could develop code that could access some of the string elements in a script, but definitely not any actual code.

(As a comparison, it would be like looking at a.EXE file in Windows, but even more convoluted.) Needless to say, even this minor capability has never and will never be developed or utilized by Zend. So, an encoded script does not decode to plain text and then execute? Zend Encoder is the most secure way to deliver php code. That said, noprotection scheme is absolutely 100% protected. What is the acual difference between Zend Encoder and say ioncube (security-wise? Thanks for clearing the air, and sorry for polluting it with more questions:) // Thomas.

Zeev Suraski No, it was more of a joke:) The reason the Zend Encoder does not use encryption is that it would be quite useless, as the file would have to be decrypted when it's loaded. It would then be relatively easy for a malicious hacker to take a look at the decrypted data. Instead, the contents of encoded files is simply not very meaningful to anything but the Zend Engine and Optimizer, so even if you get a hold of the data, you would still be far away from the source code. It certainly does not.

At 18:51, Thomas Johnsson wrote: 1. Zend does not have a way to decode a php file that was encoded using Zend Encoder. (For those of you paying attention to details, note the word 'decode', not 'decrypt'.

Zend Encoder does not encrypt. US gov't lawyers, pleasetake note:) Are you not allowed, according to US laws, to encrypt files using something like the Zend Encoder, if that was a feature?No, it was more of a joke:) The reason the Zend Encoder does not use encryption is that it would be quite useless, as the file would have to be decrypted when it's loaded.

It would then be relatively easy for a malicious hacker to take a look at the decrypted data. Instead, the contents of encoded files is simply not very meaningful to anything but the Zend Engine and Optimizer, so even if you get a hold of the data, you would still be far away from the source code. Even the inherent knowledge that Zend has about our own product would not enable us to access encoded software.

At most, we theoretically could develop code that could access some of the string elements in a script, but definitely not any actual code. (As a comparison, it would be like looking at a.EXE file in Windows, but even more convoluted.) Needless to say, even this minor capability has never and will never be developed or utilized by Zend.So, an encoded script does not decode to plain text and then execute?It certainly does not.

There are products in the market in which the data does get restored to the original plain text in runtime, but they are inherently insecure. With Zend encoded files, the original plain text is gone for good.