KB100427: Time Bomb Questions on Diafaan SMS Server

From LI AO's Wiki (Miraheze)


Introduction[edit | edit source]

This article documents information on possible time bomb design of Diafaan SMS Server, a software product that manages interconnection between different types of communication methods and GSM modems.

Symptoms[edit | edit source]

During use of Diafaan SMS Server, Li Ao noticed that a time bomb was defined in the software, possibly to prevent unauthorized software copies, by the designer. Furthermore, while this software doesn't rely on Internet-based licensing technologies, a time-based lockout was discovered which prevents long-lasting uses of this product.

More specifically, on the 180th day since the software was installed and first ran, licenses applied to the product would cease to functioning. The Diafaan SMS Server Console continues to report a licensed product, however all functionalities will stop functioning.

Measures circumventing this restriction was found by Li Ao, however the software continues to stop functioning every 10 minutes. Further inspection and possibly, reverse engineering measures may be needed to completely stops license checking mechanisms, in order to keep continued functioning of the software.

Temporary Solution[edit | edit source]

A temporary solution that confirmed to work on the 4.8.0.0 version of the software can be used to activate its functionalities for a short period of time:

  1. Stop the Diafaan SMS Server service, for which the executable activates time bomb.
  2. Delete the installed license file, which is located in the Windows registry as an entry. The registry entry is located at HKLM\SOFTWARE\Diafaan\DiafaanMessageServer\Setup. Delete the LicenseFile a string value registry entry accordingly.
  3. Start the Diafaan SMS Server service again, and use the Console to install the license file. The software will function until the next time interval is reached.

Solution[edit | edit source]

At this time, Li Ao provides no permanent solution to mitigate this issue. The temporary solution can be found in the Temporary Solution section of this article.

Outcome[edit | edit source]

It came to Li Ao's intention that this measure dipicts a reasonable design to prevent unauthorized software copies with license files published on the Internet. In order to maintain continued use of the software, the only solution might be to purchase a license from the licensing entities, to avoid potential violations of applicable laws in most jurdiscations.

Additionally, the service executable may be furtherly inspected in order to prepare for a reverse engineered replacement.

Retrieved from ‘https://wkmr.liao.media/wiki/KB100427?oldid=269