The following section is going to assume knowledge of
If you don't have the necessary skillset to perform the audit you have the following options
Realistically we expect that most people will simply opt to trust us, especially considering how easily we could be 'caught' if we were up to anything. The choice is yours.
If you are using a mac or linux you can pull down the code from the terminal using the following command
Ok here is the hard part, because senditonthenet is a complex application it will take a long time to check it. At the time of writing it is 16267 lines long, and is likely to get longer as we add additional features. We have avoided minimizing the codebase so that it is easier to read.
So what are you looking for?
First and foremost you are looking for any parts of the code where we do any of the following
Once you are happy with the code you should save a copy of it somewhere (with a timestamp) and record its checksum
To take a checksum of the file you are going to need to use a hashing function. When you hash a file you generate a small string that would change significantly if even 1 bit on the source file changed.
Senditonthenet recommends using SHA1, but you can use whatever you are most comfortable with. On OSX for example you could run the following.
Using the previous copy of the code that you checked you can just check the differences between the old file
and the new one. To do this you would use a program called
diff. By running the diff
command against the two files it will show you only the changes.