Quote:
Originally Posted by Bonk
Please don't post if you don't know what you are saying. Every off the shelf debugger can attach to, read and write to another program memory.
As a software developer for 20 years or so, I'm pretty sure I'm aware of this. As an exercise in knowing WTF you're talking about, I'd love to see you attach to the server process to statefully inspect data with gdb without disturbing the program from running.
You're missing a whole host of points. Physical access to development doesn't mean physical access to deployment. The developers very likely don't even have accounts on the production servers. They'd not only need an account on the production server, they'd need an account with root access to run a debugger to even attempt the above.
Even if they had all of this, what you're suggesting is simply not going to happen. It'd be like trying to use a sledgehammer to screw in a lightbulb.
It is far, far easier to intercept inbound and outbound packets, filter them by IP address. You can do it from any any machine on the same subnet at the server, you don't need a privileged account, there are no "fingerprints" or interruptions in the server services. Heck, you could even have a box on the subnet forward packets elsewhere.
Quote:
No, it won't, certainly not in the middle of a hand.
Do you even have the vaguest notion about how computer software actually works?