- This topic has 3 replies, 2 voices, and was last updated 20 years, 10 months ago by Dave.
-
AuthorPosts
-
November 27, 2003 at 3:53 pm #2635aLeSsParticipant
Hi dave..
Today, someone in my chatbox gave me an advise: disable right-click mouse in het chatpage.
Cause.. If a hacker wants to attack and makes a lot of work he could get his own commands with the save of the sourcecode..
is it a lot of work to do this?
no though?
bye.. xxx
November 27, 2003 at 6:07 pm #2636Disabling right click is an old and nowdays useless trick to prevent visitors from viewing the html source code of a page. Since these pages are stored in your browser’s cache locally they can be retrieved and viewed in a simple text editor. Given this, there is no real point to preventing right clicks from the mouse and I see no real reason to do so in the chat pages.
The person giving you this advise may have done a right click and viewed source to see their nickname password being used in the applet’s parameters. Since they are the only one able to view their page’s source their information is as secure as their computer. If they are truly paranoid about thier password being in the applet’s parameters they should close the window when they leave the computer or perhaps activate a screen saver which requires a password to get past before continuing.
Nothing rhymes with Cindy Crawford after 9 coronas...November 28, 2003 at 4:19 pm #2641aLeSsParticipantQuote:
Disabling right click is an old and nowdays useless trick to prevent visitors from viewing the html source code of a page. Since these pages are stored in your browser’s cache locally they can be retrieved and viewed in a simple text editor. Given this, there is no real point to preventing right clicks from the mouse and I see no real reason to do so in the chat pages.
The person giving you this advise may have done a right click and viewed source to see their nickname password being used in the applet’s parameters. Since they are the only one able to view their page’s source their information is as secure as their computer. If they are truly paranoid about thier password being in the applet’s parameters they should close the window when they leave the computer or perhaps activate a screen saver which requires a password to get past before continuing.
Ok.. No it’s not that. There was a line in the whole html source that would be able to have controls from your pc. When they change links etc.. It would be a lot of work and there would be no one who would do this. But the person (who is a computer programmer) said if they REALLY WANT they can do this with the source.
But you said if you do that, they will still be able to view the source, because of the TEMP ??
November 28, 2003 at 5:16 pm #2642All web pages are stored in the browser’s cache areas (mozilla, opera, IE) as far as I know. Some webmasters feel the need to hide their html code because they don’t want others using their code. I have used this technique back in 96 when I first started messing with html. After a point, one realizes that it is silly to do so because it only prevents the casual attempts at viewing the code. If a person really wants to view the code they can, if they work at it.
I don’t know what line they think is significant in the source that would provide them with some sort of controls but I can assure you there isn’t a security risk in the html of the chat pages. Perhaps they are thinking they could add additional variable input at the login box to the chat page? That’s possible but any variables not expected are destroyed after extraction in the scripts.
I really have no idea what they may be thinking but I’m not worried about it. It’s only html, not rocket science.
Nothing rhymes with Cindy Crawford after 9 coronas... -
AuthorPosts
- The forum ‘Get Help’ is closed to new topics and replies.