Bat file Protection

scottalanmiller

Problems:

1. There is no reason to have a BAT file at all.
2. As the admin, there is no reason for anyone but you to see your files.
3. As a general script, there is no reason for you to care if anyone sees the file.

None of this makes sense. Fix ANY of these major three problems and everything is solved.

So we are lost because...

• Why is there a BAT file at all (answer: no good reason)
• Why is your friend getting access to the file in any form if he's not the admin (answer: he's the actual admin)
• Why do you care? (answer: no reason)

scottalanmiller

@donaldlandru said in Bat file Protection:

The .exe is probably a self extracting zip file. Inside is a bunch of installers and a batch file to run them.

There is no exe, he's stuck on things that he thinks are encryption. And he's confused and thinks that encrypted files can't be read by the admin.

donaldlandru

@scottalanmiller I was referring to this. He mentions an action involving 7zip and an exe file

@scottalanmiller said in Bat file Protection:

The friend opened the .exe with the help of .zip or 7 zip.He should not do that and should not read the .bat file too

scottalanmiller

@donaldlandru said in Bat file Protection:

@scottalanmiller I was referring to this. He mentions an action involving 7zip and an exe file

@scottalanmiller said in Bat file Protection:

The friend opened the .exe with the help of .zip or 7 zip.He should not do that and should not read the .bat file too

I know, but it's from the confusion and not part of his goals.

Lakshmana

@scottalanmiller said in Bat file Protection:

om the confusion and not part of his goals.

But goal is correct you people confused with .exe and .bat file i think

donaldlandru

@lakshmana said in Bat file Protection:

@scottalanmiller said in Bat file Protection:

om the confusion and not part of his goals.

But goal is correct you people confused with .exe and .bat file i think

I am not drunk enough for this. GL @scottalanmiller

scottalanmiller

@lakshmana said in Bat file Protection:

@scottalanmiller said in Bat file Protection:

om the confusion and not part of his goals.

But goal is correct you people confused with .exe and .bat file i think

Right, you need to stop talking about files completely. When asking questions like this, you need to ask about how to achieve your goals. Instead, you consistently invent a terrible or impossible solution and try to get us to help with that instead of helping with what you actually need to accomplish.

Imagine if you wanted to go to the store. But instead of asking us how to get to the store you decided that the best way to get there is to fly. But you don't have a pilot's license. So you ask us questions about the best place to learn to fly. And we keep asking "why do you want to fly?" And you keep saying "Because my friend doesn't have a boat." And we say "What does that mean?"

And never once does "I want to go to the store" ever get said. Had it been said, we'd have said "Oh, just call a taxi, it's around the corner."

That's what this threat is like. You want to go to the store, but you are obsessed with flying there and because you can't afford an airplane ticket you are trying to become a pilot to do so and asking about something that has nothing to do with your goals.

Lakshmana

@scottalanmiller Big and Good Example i will ping in Chat

scottalanmiller

I really think that Sodium might be all that you need. Trying to read between the lines, I think that you just need a proper administration tool that does the pieces that you need.

Lakshmana

As discussed in Chat you found the process

scottalanmiller

There is no good option, sadly. Given the limitations the situation is that the end user is required to have access to the files. Making an exe would be easiest, but doesn't solve the problem.

Lakshmana

The End

scottalanmiller

Pretty much. That the file needs to contain the files to deploy offline, the end user has to have admin access in order to run it and any admin access means that they can open the file. The two needs are conflicting.

dbeato

@lakshmana You might benefit from having your friend using Ninite to upgrade software automatically which does not let the user see commands but just notes what applications are updated.

CloudKnight

Head and brick wall comes to mind....

I don't see any security issue, if anything you should allow people to see what's being installed whenever they are silently installed or not.
It just seems strange and you are being vague with what you are asking and you are not listening to the same repeated answers which Scott stated.

Post some of this batch file leaving out any sensitive information you are worried about, but remember it's plain text, so you should not be storing passwords or anything sensitive in batch files anyway and even if you encrypted the batch file, the user will still need to unecrypt to run the file, so thats a flawed option.

If there is nothing malicious in the batch file, then you should have no issue posting it?