Why is lmgrd.exe sensitive? Until very recently (as I recall), anyone could download the latest version, there should be nothing specific in that binary to your private key.

I totally agree the reply with regard to lmgrd is confusing. 

The security within FLEXera depends upon your secret keys and those are obviously compiled into lmcrypt, your vendor daemon and your application.

Any "off the shelf" executables such as lmgrd and lmutil have no relationship to your secret keys at all. 

A lmcrypt executable, merchant daemon executable and lmgrd executable are the 3 most touchy piece of any distributer (/client) who produces permitting.

So it turns into a distributers duty to protect their wellbeing. Also, yes if lmcrypt is noticeable all around, its a security issue and I am anxious about the possibility that that it can't be found. (for instance, make an uncounted permit and use it until the end of time), air blue

---

@PhilipMJones wrote:

I totally agree the reply with regard to lmgrd is confusing. 

The security within FLEXera depends upon your secret keys and those are obviously compiled into lmcrypt, your vendor daemon and your application.

Any "off the shelf" executables such as lmgrd and lmutil have no relationship to your secret keys at all. 

---

 

It was a figure of speech, when i mentioned that vendor daemon, lmcrypt and lmgrd are 3 most important part of the licensing setup. Yes, lmgrd is an off the shelf executable and can be downloaded externally. As a rule of thumb, any executable being built at run time, (through makefile/makefile.act)becomes vendor specific and must be protected. lmutil and lmgrd are not built during toolkit built and hence are non daemon specific.

Hi

Maybe you  can  rebuild  the SDK by changing the seeds in lm_code.h.

rebuild lmcrypt and the application too.

oldest version of lmcrypt will not be compatible with new software.

Regards.

Gilles Noyer.