about showin code...
Moderator: General Moderators
about showin code...
if u look at this site http://www.thecrims.com
try now to see the code of the page. exactly, it can't be seen
why?
how to do this?
try now to see the code of the page. exactly, it can't be seen
why?
how to do this?
- Chris Corbyn
- Breakbeat Nuttzer
- Posts: 13098
- Joined: Wed Mar 24, 2004 7:57 am
- Location: Melbourne, Australia
Code: Select all
<html>
<head>
<title>The Crims - The life of a criminal</title>
<meta http-equiv="e;Content-Type"e; content="e;text/html; charset=utf-8"e; />
<meta name="e;robots"e; content ="e;index,follow"e;>
<meta name="e;description"e; content="e;TheCrims, a metropolitan for gangsters, scumbags, and criminals. Online free mmorpg webgame."e;>
<meta name="e;keywords"e; content="e;thecrims,the crims,thecrimes,the crimes,mmorpg,free mmorpg"e;>
<meta name="e;documentType"e; content="e;WebDocument"e;>
</head>
<frameset rows="e;*,0"e; frameborder="e;NO"e; border="e;0"e; framespacing="e;0"e;>
<frame src="e;start.php"e; name="e;main"e; scrolling="e;yes"e;>
<frame src="e;empty.html"e; name="e;top"e; scrolling="e;NO"e;>
</frameset>
<noframes>
<body>
</body>
</noframes>
</html>See my point? It's pointless using JS to do something like this
His point was that its not hidden. It simply disables the right click menu on the webpage. The source is still there, not hidden, you simply have to access it another way. (There are dozens of ways to access it).adixtopix wrote:actually i don't get it
all i know is that site is made in php and somehow hides the code, the html code, so i am confused and want to do something like that for my sites
Hiding html isn't a benefit - its a bad thing. It prevents users from making suggestions on how to improve your site, and restricts their ability to do what they want and/or need to do. For people with disabilities such restrictions can end up preventing them from using the site at all.
The web was built on openness, not hiding.
Because the javascript doesn't prevent the user from seeing the code. It prevents the user from right-clicking. The user can also view source, validate with verbose mode, view his internet cache, view the code manually (with wget), and dozens of other methods.adixtopix wrote:what do you mean when <span style='color:blue' title='ignorance is bliss'>you</span> say that is pointless in using JS?See my point? It's pointless using JS to do something like this
HTML cannot be hidden. It has to be given to the browser, and once its there, the user can view it as well.
Originality, usefulness.adixtopix wrote:therefor there is no way to protect your site from being copyed
If you make a site that is unmistakably original, specific, and useful, a competitor will stick out as a copycat. The web is most powerful when you focus on sharing, providing, and giving users what they want and need. Not hiding behind technology to give you an edge.
- John Cartwright
- Site Admin
- Posts: 11470
- Joined: Tue Dec 23, 2003 2:10 am
- Location: Toronto
- Contact:
Thats security through obscurity, and it doesn't work.adixtopix wrote:<span style='color:blue' title='ignorance is bliss'>you</span> have a good point)
only that i am obsessed of security
i don't want anyone to be able to attempt doing anything to my databases...
Just like the site couldn't hide the sourcecode, you can't hide vulnerabilities - and you shouldn't want to. It will fool you into thinking its safe, when its not - its just well hidden!
Its like burying a million dollars in the backyard. What happens if someone finds out where its hidden? There is NO security stopping someone from digging it up! Its just hidden.
It's better to see the lack of security, and fix it. If you have security concerns, ask for help. You aren't the first person to implement security on a website, and most of the problems you face have been solved - long ago.
- Chris Corbyn
- Breakbeat Nuttzer
- Posts: 13098
- Joined: Wed Mar 24, 2004 7:57 am
- Location: Melbourne, Australia
Your HTML output should show nothing directly contained in your PHP. It's just that; output.adixtopix wrote:<span style='color:blue' title='ignorance is bliss'>you</span> have a good point)
only that i am obsessed of security
i don't want anyone to be able to attempt doing anything to my databases...
PHP itself is very secure if you don't leave open doors for external control