I have been doing a bit of research into Batch scripts and .exe files. I have recently got a script that makes a cmd window come up asking for a password to unlock a folder bla bla bla. Except when I convert the batch file to an exe it still has one major security hole and that is if you make another batch file with the same script and put a different password it still unlocks the folder. Does anyone know how to "plug" this hole?
Here's the script: (I use it to protect my USB at school)
This works however it still has the security hole above and the script is easy to get from the net if you look hard enough.
Here's the script: (I use it to protect my USB at school)
Code:
cls
@ECHO OFF
title Folder Confidential
if EXIST "Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}" goto UNLOCK
if NOT EXIST Confidential goto MDLOCKER
:CONFIRM
echo Are you sure you want to lock the folder(Y/N)
set/p "cho=>"
if %cho%==Y goto LOCK
if %cho%==y goto LOCK
if %cho%==n goto END
if %cho%==N goto END
echo Invalid choice.
goto CONFIRM
:LOCK
ren Confidential "Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}"
attrib +h +s "Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}"
echo Folder locked
goto End
:UNLOCK
echo Enter the Password to unlock folder
set/p "pass=>"
if NOT %pass%== password here goto FAIL
attrib -h -s "Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}"
ren "Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}" Confidential
echo Folder Unlocked successfully
goto End
:FAIL
echo Invalid password
goto end
:MDLOCKER
md confidential
echo Confidential created successfully
goto End
:End
This works however it still has the security hole above and the script is easy to get from the net if you look hard enough.