Encrypted and secure docker containers

Question

We all know situations when you cannot go open source and freely distribute software - and I am in one of these situations.

I have an app that consists of a number o

Answer 1

For the Python part, you might consider using Pyinstaller, with appropriate options, it can pack your whole python app in a single executable file, which will not require python installation to be run by end users. It effectively runs a python interpreter on the packaged code, but it has a cipher option, which allows you to encrypt the bytecode.

Yes, the key will be somewhere around the executable, and a very savvy costumer might have the means to extract it, thus unraveling a not so readable code. It's up to you to know if your code contains some big secret you need to hide at all costs. I would probably not do it if I wanted to charge big money for any bug solving in the deployed product. I could use it if client has good compliance standards and is not a potential competitor, nor is expected to pay for more licenses.

While I've done this once, I honestly would avoid doing it again.

Regarding the C code, if you can compile it into executables and/or shared libraries can be included in the executable generated by Pyinstaller.