could someone with a good understanding of networks, programming, encryption and poker answer some questions about poker software security?
SealsWithClubs uses Poker Mavens software by Briggsoft, the FAQ of which can be found
here. it states that the source code of an older version of the software can be licensed out for 10,000$. briggsoft also
states that they use a card-shuffling algorithm the source code of which they provide. this does not necessarily mean that the source code provided on the website is the same one that they use for poker mavens, but for the purpose of the question i'm about to ask, we will assume that it is.
is the fact that you can buy the source code a potential attack vector? e.g., you buy the source code, hire someone competent to find vulnerabilities within it, and then exploit said vulnerabilities to grant yourself an unfair advantage (whatever the advantage may be - from seeing the holecards of another player to knowing board runouts beforehand). right now there are games running for what would be the equivalent of $80/$160 blinds, which means spending $100,000 (the actual figure doesn't matter, let's say $10,000 for source code + $90,000 hacker fee for simplicity's sake) to find exploits is a very worthwhile endeavour, as you can make the money back in a very short period of time if you are smart about it and the long-term returns are even greater.
all of the above assumes that whoever is running SWC is legitimately trustworthy.
but if they are not, and they have access to the source code, it means that they can alter the client in whichever way the want, which would potentially allow for the unfair advantages to exist for a few special people.
am i correct?