Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
@jestdotty if the client doesn't pay, first of all they will remove your access.
There are many ways to do this usually, write a hidden code to clean DB, Remove Backups, Delete files etc. it's up to you. -
Voxera113881y@rsharma9234 in most cases I think it would be legally questionable at best.
It probably differs between countries but unless the contract have some clause about like time bomb that will be removed on full payment it could backfire.
And at worst it could give a bad reputation if the client is well connected.
Even if your purpose was to only have it as a safe guard. The client could argue that you built in that back door for more sinister purpose like black mail or to sell on the black market.
And IF it was discovered by an security audit tool it could get very nasty :/ -
@Voxera I agreed with your points, but most of time there is nothing developer can do in case client don't pay. happened to me 2-3 times. It's better to be safe.
I remember once creating a health care site for a client in the USA. Everything was good until he had to pay, he blocked my skype. Change server details are remove my access form site. I removed his site. within 2 hours he unblocks me and pay me full to up the site again. -
Look, in justice league even Batman devised a backup plan to neutralise other super heros in case they go rogue. sounds legitimate to me.
-
I think devs generally host, and if client pays in full then you can hand it over to them
At least how it works for small businesses, like epoxy, cake shops, etc. not like they want to deal with hosting anyway! Plus then you can charge them hosting! -
Voxera113881y@rsharma9234 shutting down if you have a formal account or host the site is one thing.
Hiding a backdoor is something else :)
The first is most likely always legal, the second is at best in the gray zone.
Is it just me, or do other developers also leave a backdoor in the code in case the client doesn't pay?
question
developers