Hide HTML Source Code

Discussion in 'HTML' started by ad@albert-dominguez.de, May 29, 2007.

  1. Guest

    Hiding HTML source code is possible. It requires JavaScript, but there
    is no need to encrypt HTML output or do anything else which would
    decrease performance. I discovered this about five years ago, but at
    that time it would have been considered bad practice in regards to
    cross-browser-compatibility. Now that AJAX has become a programming
    standard, the time has come to let this loose on the the public. I
    won't tell you how I do it, but I will provide you with a working
    example.

    http://www.smart-cgi.com/api/

    If anyone is able to crack this, I would appreciate the feedback.

    Albert Dominguez
    , May 29, 2007
    #1
    1. Advertising

  2. wrote:

    > Hiding HTML source code is possible. It requires JavaScript, but there
    > is no need to encrypt HTML output or do anything else which would
    > decrease performance. I discovered this about five years ago, but at
    > that time it would have been considered bad practice in regards to
    > cross-browser-compatibility. Now that AJAX has become a programming
    > standard, the time has come to let this loose on the the public. I
    > won't tell you how I do it, but I will provide you with a working
    > example.
    >
    > http://www.smart-cgi.com/api/
    >
    > If anyone is able to crack this, I would appreciate the feedback.


    http://www.smart-cgi.com/api/rss.php?url=http://rss.news.yahoo.com/rss/topstories

    so what?

    --
    Benjamin Niemann
    Email: pink at odahoda dot de
    WWW: http://pink.odahoda.de/
    Benjamin Niemann, May 29, 2007
    #2
    1. Advertising

  3. On May 29, 2:14 pm, wrote:
    > Hiding HTML source code is possible.


    Not effectively

    > It requires JavaScript


    Which is run by the browser, so a DOM Inspector can extract the markup
    in about two clicks.

    >, but there is no need to encrypt HTML output or do anything else which would
    > decrease performance.


    Correct. Hiding the HTML source is pointless.

    > I discovered this about five years ago, but at
    > that time it would have been considered bad practice in regards to
    > cross-browser-compatibility.


    .... and still is. Hiding all your content from search engines and
    users of Opera Mobile is generally considered a bad idea.

    > Now that AJAX has become a programming
    > standard


    *snigger*

    >, the time has come to let this loose on the the public. I
    > won't tell you how I do it, but I will provide you with a working
    > example.
    >
    > http://www.smart-cgi.com/api/


    Oh dear

    > If anyone is able to crack this, I would appreciate the feedback.


    Two clicks:

    <html lang="en" dir="ltr" xml:lang="en" xmlns="http://www.w3.org/1999/
    xhtml"><head><script type="text/javascript" src="./js.js"/
    ><title>Smart-CGI.com</title><meta content="text/html; charset=UTF-8"

    http-equiv="Content-Type"/><link type="text/css" href="./default.css"
    rel="stylesheet"/></head><body onload="getNav('http://
    rss.news.yahoo.com/rss/topstories', urls);getXml('http://
    rss.news.yahoo.com/rss/topstories');return false;"><div
    class="headmast"><a href="../"><img style="border: medium none ;
    padding-left: 8px;" alt="Smart-CGI.com" src="../img/logo.gif"/></a></
    div><div id="nav"><div class="navWrapper"><h1 class="navBlur">Top
    Stories</h1><h1 class="navFocus"><a onclick="getNav(this.id,
    urls);getXml('http://rss.news.yahoo.com/rss/world');return false;"
    id="http://rss.news.yahoo.com/rss/world" class="nav"
    href="javascript:">World News</a></h1><h1 class="navFocus"><a
    onclick="getNav(this.id, urls);getXml('http://rss.news.yahoo.com/rss/
    us');return false;" id="http://rss.news.yahoo.com/rss/us" class="nav"
    href="javascript:">U.S. News</a></h1><h1 class="navFocus"><a
    onclick="getNav(this.id, urls);getXml('http://rss.news.yahoo.com/rss/
    politics');return false;" id="http://rss.news.yahoo.com/rss/politics"
    class="nav" href="javascript:">Politics</a></h1><h1
    class="navFocus"><a onclick="getNav(this.id, urls);getXml('http://
    rss.news.yahoo.


    (and I won't bother pasting the rest)
    David Dorward, May 29, 2007
    #3
  4. Scripsit David Dorward:

    > Hiding all your content from search engines and
    > users of Opera Mobile is generally considered a bad idea.


    Not necessary.

    People who try to hide HTML source typically produce crap pages, so hiding
    them from as many user agents as possible tends to raise the overall quality
    of the Web.

    --
    Jukka K. Korpela ("Yucca")
    http://www.cs.tut.fi/~jkorpela/
    Jukka K. Korpela, May 29, 2007
    #4
  5. El Kabong Guest

    And the script begins with:

    function clickIE () { if (document.all) return false; }
    function clickNS (e) { if (document.layers || (document.getElementById &&
    !document.all)) { if (e.which == 2 || e.which == 3) return false; } }
    function getXml (url) {
    etcetera, etcetera, etcetera...

    "David Dorward" <> wrote in message
    news:...
    > On May 29, 2:14 pm, wrote:
    >> Hiding HTML source code is possible.

    >
    > Not effectively
    >
    >> It requires JavaScript

    >
    > Which is run by the browser, so a DOM Inspector can extract the markup
    > in about two clicks.
    >
    >>, but there is no need to encrypt HTML output or do anything else which
    >>would
    >> decrease performance.

    >
    > Correct. Hiding the HTML source is pointless.
    >
    >> I discovered this about five years ago, but at
    >> that time it would have been considered bad practice in regards to
    >> cross-browser-compatibility.

    >
    > ... and still is. Hiding all your content from search engines and
    > users of Opera Mobile is generally considered a bad idea.
    >
    >> Now that AJAX has become a programming
    >> standard

    >
    > *snigger*
    >
    >>, the time has come to let this loose on the the public. I
    >> won't tell you how I do it, but I will provide you with a working
    >> example.
    >>
    >> http://www.smart-cgi.com/api/

    >
    > Oh dear
    >
    >> If anyone is able to crack this, I would appreciate the feedback.

    >
    > Two clicks:
    >
    > <html lang="en" dir="ltr" xml:lang="en" xmlns="http://www.w3.org/1999/
    > xhtml"><head><script type="text/javascript" src="./js.js"/
    >><title>Smart-CGI.com</title><meta content="text/html; charset=UTF-8"

    > http-equiv="Content-Type"/><link type="text/css" href="./default.css"
    > rel="stylesheet"/></head><body onload="getNav('http://
    > rss.news.yahoo.com/rss/topstories', urls);getXml('http://
    > rss.news.yahoo.com/rss/topstories');return false;"><div
    > class="headmast"><a href="../"><img style="border: medium none ;
    > padding-left: 8px;" alt="Smart-CGI.com" src="../img/logo.gif"/></a></
    > div><div id="nav"><div class="navWrapper"><h1 class="navBlur">Top
    > Stories</h1><h1 class="navFocus"><a onclick="getNav(this.id,
    > urls);getXml('http://rss.news.yahoo.com/rss/world');return false;"
    > id="http://rss.news.yahoo.com/rss/world" class="nav"
    > href="javascript:">World News</a></h1><h1 class="navFocus"><a
    > onclick="getNav(this.id, urls);getXml('http://rss.news.yahoo.com/rss/
    > us');return false;" id="http://rss.news.yahoo.com/rss/us" class="nav"
    > href="javascript:">U.S. News</a></h1><h1 class="navFocus"><a
    > onclick="getNav(this.id, urls);getXml('http://rss.news.yahoo.com/rss/
    > politics');return false;" id="http://rss.news.yahoo.com/rss/politics"
    > class="nav" href="javascript:">Politics</a></h1><h1
    > class="navFocus"><a onclick="getNav(this.id, urls);getXml('http://
    > rss.news.yahoo.
    >
    >
    > (and I won't bother pasting the rest)
    >


    And the referenced script begins with:

    function clickIE () { if (document.all) return false; }
    function clickNS (e) { if (document.layers || (document.getElementById &&
    !document.all)) { if (e.which == 2 || e.which == 3) return false; } }
    function getXml (url) {
    etcetera, etcetera, etcetera...

    Requires a third click.

    Back to the drawing board, friend.

    El
    El Kabong, May 29, 2007
    #5
  6. On May 29, 3:33 pm, "El Kabong" <> wrote:

    > Requires a third click.


    It was two, I counted.
    David Dorward, May 29, 2007
    #6
  7. El Kabong Guest

    Oh, yeah. Sorry, it's hard to count when I've got my shoes on.

    El

    "David Dorward" <> wrote in message
    news:...
    > On May 29, 3:33 pm, "El Kabong" <> wrote:
    >
    >> Requires a third click.

    >
    > It was two, I counted.
    >
    El Kabong, May 29, 2007
    #7
  8. Guest

    On May 29, 3:41 pm, Benjamin Niemann <> wrote:
    > wrote:
    > > HidingHTMLsourcecodeis possible. It requires JavaScript, but there
    > > is no need to encryptHTMLoutput or do anything else which would
    > > decrease performance. I discovered this about five years ago, but at
    > > that time it would have been considered bad practice in regards to
    > > cross-browser-compatibility. Now that AJAX has become a programming
    > > standard, the time has come to let this loose on the the public. I
    > > won't tell you how I do it, but I will provide you with a working
    > > example.

    >
    > >http://www.smart-cgi.com/api/

    >
    > > If anyone is able to crack this, I would appreciate the feedback.

    >
    > http://www.smart-cgi.com/api/rss.php?url=http://rss.news.yahoo.com/rs...
    >
    > so what?
    >
    > --
    > Benjamin Niemann
    > Email: pink at odahoda dot de
    > WWW:http://pink.odahoda.de/


    Try this again:

    > http://www.smart-cgi.com/api/rss.php?url=http://rss.news.yahoo.com/rss


    and no I haven't moved, renamed or changed the output of this page.
    , May 29, 2007
    #8
  9. JWS Guest

    wrote:

    > http://www.smart-cgi.com/api/
    >
    > If anyone is able to crack this, I would appreciate the feedback.


    Just clicking file, save page as, web page complete (in Mozilla
    Seamonkey) reveals the whole sorry mess. No cracking is involved.
    JWS, May 29, 2007
    #9
  10. wrote:
    > Hiding HTML source code is possible. It requires JavaScript, but there
    > is no need to encrypt HTML output or do anything else which would
    > decrease performance. I discovered this about five years ago, but at
    > that time it would have been considered bad practice in regards to
    > cross-browser-compatibility. Now that AJAX has become a programming
    > standard, the time has come to let this loose on the the public. I
    > won't tell you how I do it, but I will provide you with a working
    > example.
    >
    > http://www.smart-cgi.com/api/
    >
    > If anyone is able to crack this, I would appreciate the feedback.


    DUH!

    > <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" dir="ltr" lang="en"><head><script src="./js.js" type="text/javascript"></script><script type="text/javascript" src="./hide.js"></script><title>Smart-CGI.com</title><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><link rel="stylesheet" href="./default.css" type="text/css"></head><body onload="getNav('http://rss.news.yahoo.com/rss/topstories', urls);getXml('http://rss.news.yahoo.com/rss/topstories');return false;"><div class="headmast"><a href="../"><img src="../img/logo.gif" alt="Smart-CGI.com" style="border: medium none ; padding-left: 8px;"></a></div><div id="nav"><div class="navWrapper"><h1 class="navBlur">Top Stories</h1><h1 class="navFocus"><a href="javascript:" class="nav" id="http://rss.news.yahoo.com/rss/world" onclick="getNav(this.id, urls);getXml('http://rss.news.yahoo.com/rss/world');return false;">World News</a></h1><h1 class="navFocus"><a href="javascript:" class="nav" id="http://rss.ne

    ws.yahoo.com/rss/us" onclick="getNav(this.id, urls);getXml('http://rss.news.yahoo.com/rss/us');return false;">U.S. News</a></h1><h1 class="navFocus"><a href="javascript:" class="nav" id="http://rss.news.yahoo.com/rss/politics" onclick="getNav(this.id, urls);getXml('http://rss.news.yahoo.com/rss/politics');return false;">Politics</a></h1><h1 class="navFocus"><a href="javascript:" class="nav" id="http://rss.news.yahoo.com/rss/business" onclick="getNav(this.id, urls);getXml('http://rss.news.yahoo.com/rss/business');return false;">Business</a></h1><h1 class="navFocus"><a href="javascript:" class="nav" id="http://rss.news.yahoo.com/rss/tech" onclick="getNav(this.id, urls);getXml('http://rss.news.yahoo.com/rss/tech');return false;">Technology</a></h1><h1 class="navFocus"><a href="javascript:" class="nav" id="http://rss.news.yahoo.com/rss/science" onclick="getNav(this.id, urls);getXml('http://rss.news.yahoo.com/rss/science');return false;">Science</a></h1><h1 class="navFocus"><a hre
    f="javascript:" class="nav" id="http://rss.news.yahoo.com/rss/sports" onclick="getNav(this.id, urls);getXml('http://rss.news.yahoo.com/rss/sports');return false;">Sports</a></h1></div></div><div id="out"><a href="http://news.yahoo.com/i/716"><img src="http://us.i1.yimg.com/us.yimg.com/i/us/nws/th/main_142b.gif" alt="Yahoo! News: Top Stories" class="img"></a><h1 class="title"><a href="http://news.yahoo.com/i/716">Yahoo! News: Top Stories</a></h1><address class="copyright">Top Stories Tue, 29 May 2007 16:29:56 GMT </address><div name="item" class="item"><h2><a href="http://us.rd.yahoo.com/dailynews/rss/topstories/*http://news.yahoo.com/s/ap/20070529/ap_on_go_pr_wh/us_darfur">Bush pressures Sudan with new sanctions
    > (AP)</a></h2><div>Tue, 29 May 2007 16:33:09 GMT</div><p></p><p><a href="http://us.rd.yahoo.com/dailynews/rss/topstories/*http://news.yahoo.com/s/ap/20070529/ap_on_go_pr_wh/us_darfur"><img src="http://d.yimg.com/us.yimg.com/p/ap/20070529/capt.b2b1b4d5a14c44fda2f671572e7541a9.bush_dcsa102.jpg?x=130&amp;y=117&amp;sig=Gids_0IhcZ7vGQo604sF4Q--" alt="President Bush waves as he departs the White House in Washington, Tuesday, May 29, 2007, after he ordered new U.S. economic sanctions to pressure Sudan's government to halt the genocide in Darfur. The president is traveling to the to the Federal Law Enforcement Training Center in Glynco, Ga. (AP Photo/J. Scott Applewhite)" align="left" border="0" height="117" width="130"></a>AP - President Bush ordered new U.S. economic sanctions Tuesday to pressure Sudan's government to halt the bloodshed in Darfur that the administration has condemned as genocide.</p><br clear="all"><p></p></div><div name="item" class="item"><h2><a href="http

    ://us.rd.yahoo.com/dailynews/rss/topstories/*http://news.yahoo.com/s/ap/20070529/ap_on_re_mi_ea/iraq">U.S.: 10 Memorial Day deaths in Iraq
    > (AP)</a></h2><div>Tue, 29 May 2007 16:18:48 GMT</div><p></p><p><a href="http://us.rd.yahoo.com/dailynews/rss/topstories/*http://news.yahoo.com/s/ap/20070529/ap_on_re_mi_ea/iraq"><img src="http://d.yimg.com/us.yimg.com/p/rids/20070529/i/r446538201.jpg?x=130&amp;y=93&amp;sig=10ysuM53nRuoQ_draYNjyQ--" alt="Iraqis ride past a damaged Sunni mosque in Baghdad May 29, 2007. At least 24 people were killed and 68 were wounded when a truck bomb exploded near Baghdad's largest Sunni Muslim mosque on Monday, police said. REUTERS/Ceerwan Aziz (IRAQ)" align="left" border="0" height="93" width="130"></a>AP - Ten American soldiers were killed in roadside bombings and a helicopter crash on Memorial Day, the military reported Tuesday, making May the deadliest month of the year for U.S. troops in Iraq.</p><br clear="all"><p></p></div><div name="item" class="item"><h2><a href="http://us.rd.yahoo.com/dailynews/rss/topstories/*http://news.yahoo.com/s/ap/20070529/ap_on_re_eu/russia_missile_t

    est">Russian official boasts of new ICBM
    > (AP)</a></h2><div>Tue, 29 May 2007 16:01:27 GMT</div><p></p><p><a href="http://us.rd.yahoo.com/dailynews/rss/topstories/*http://news.yahoo.com/s/ap/20070529/ap_on_re_eu/russia_missile_test"><img src="http://d.yimg.com/us.yimg.com/p/afp/20070515/capt.sge.dox74.150507160530.photo02.photo.default-512x354.jpg?x=130&amp;y=89&amp;sig=wtf6LX3z8pdDTnTd_ceBlg--" alt="Russian President Vladimir Putin (R) speaks with First Deputy Prime Minister Sergei Ivanov during a meeting in March 2007. US Secretary of State Condoleezza Rice met President Vladimir Putin on a visit aimed at allaying Russian complaints of American interference in both the military and political spheres.(AFP/Pool/File/Dmitry Astakhov)" align="left" border="0" height="89" width="130"></a>AP - Russia on Tuesday test-launched a new intercontinental ballistic missile, apparently developed secretly, that a top government official said could penetrate any defense system, Russian news agencies reported.</p><br clear="al

    l"><p></p></div><div name="item" class="item"><h2><a href="http://us.rd.yahoo.com/dailynews/rss/topstories/*http://news.yahoo.com/s/ap/20070529/ap_on_el_pr/obama_health">Obama offers universal health care plan
    > (AP)</a></h2><div>Tue, 29 May 2007 16:20:17 GMT</div><p></p><p><a href="http://us.rd.yahoo.com/dailynews/rss/topstories/*http://news.yahoo.com/s/ap/20070529/ap_on_el_pr/obama_health"><img src="http://d.yimg.com/us.yimg.com/p/ap/20070529/capt.7b36c8d381d346e08a8abfb549a1b3c4.obama_2008_iacn105.jpg?x=130&amp;y=94&amp;sig=YY7ygBKWgzdywvw_miI5Ew--" alt="Democratic presidential hopeful U.S. Sen. Barack Obama, D-Ill., speaks during a Memorial Day reception with veterans, Monday, May 28, 2007, in Davenport, Iowa. (AP Photo/Charlie Neibergall)" align="left" border="0" height="94" width="130"></a>AP - Democratic presidential candidate Barack Obama on Tuesday offered a sweeping health care plan that would provide every citizen a means for coverage and calls on government, businesses and consumers to share the costs of the program.</p><br clear="all"><p></p></div><div name="item" class="item"><h2><a href="http://us.rd.yahoo.com/dailynews/rss/topstories/*http://news.yahoo.com/s/ap

    /20070529/ap_on_bi_ge/economy">Consumer confidence rebounds in May

    ....

    > was ending her public campaign against the Iraq war with an
    > angry blast at Democrats, Republicans and "cowardly leaders"
    > who have abandoned U.S. troops indefinitely in Iraq.</p><br clear="all"><p></p></div><div name="item" class="item"><h2><a href="http://us.rd.yahoo.com/dailynews/rss/topstories/*http://news.yahoo.com/s/nm/20070529/pl_nm/worldbank_bush_dc">Bush may name World Bank chief this week: WHouse
    > (Reuters)</a></h2><div>Tue, 29 May 2007 14:23:32 GMT</div><p></p><p><a href="http://us.rd.yahoo.com/dailynews/rss/topstories/*http://news.yahoo.com/s/nm/20070529/pl_nm/worldbank_bush_dc"><img src="http://d.yimg.com/us.yimg.com/p/nm/20070529/2007_05_29t113836_450x359_us_worldbank_bush.jpg?x=130&amp;y=103&amp;sig=P2DqS2g7bBRVdAf7IbqJVA--" alt="A view of a conference hall during the IMF and World Bank spring meeting in Washington, April 14, 2007. President Bush is likely to announce this week a candidate to replace World Bank President Paul Wolfowitz, who resigned after a storm of criticism over a salary increase for his companion, White House spokesman Tony Snow said on Tuesday. (Yuri Gripas/Reuters)" align="left" border="0" height="103" width="130"></a>Reuters - President George W. Bush is
    > likely to announce this week a candidate to replace World Bank
    > President Paul Wolfowitz, who resigned after a storm of
    > criticism over a salary increase for his companion, White House
    > spokesman Tony Snow said on Tuesday.</p><br clear="all"><p></p></div><div name="item" class="item"><h2><a href="http://us.rd.yahoo.com/dailynews/rss/topstories/*http://news.yahoo.com/s/nm/20070529/ts_nm/g8_climate_germany_dc">Merkel, Pelosi say world should unite on climate


    ....

    Enough?


    --
    Take care,

    Jonathan
    -------------------
    LITTLE WORKS STUDIO
    http://www.LittleWorksStudio.com
    Jonathan N. Little, May 29, 2007
    #10
  11. wrote:

    > On May 29, 3:41 pm, Benjamin Niemann <> wrote:
    >> wrote:
    >> > HidingHTMLsourcecodeis possible. It requires JavaScript, but there
    >> > is no need to encryptHTMLoutput or do anything else which would
    >> > decrease performance. I discovered this about five years ago, but at
    >> > that time it would have been considered bad practice in regards to
    >> > cross-browser-compatibility. Now that AJAX has become a programming
    >> > standard, the time has come to let this loose on the the public. I
    >> > won't tell you how I do it, but I will provide you with a working
    >> > example.

    >>
    >> >http://www.smart-cgi.com/api/

    >>
    >> > If anyone is able to crack this, I would appreciate the feedback.

    >>
    >> http://www.smart-cgi.com/api/rss.php?url=http://rss.news.yahoo.com/rs...
    >>
    >> so what?

    >
    > Try this again:
    >
    >> http://www.smart-cgi.com/api/rss.php?url=http://rss.news.yahoo.com/rss

    >
    > and no I haven't moved, renamed or changed the output of this page.


    wget -O - -q --referer=http://www.smart-cgi.com/api/js.js \
    http://www.smart-cgi.com/api/rss.php?url=http://rss.news.yahoo.com/rss/topstories

    --
    Benjamin Niemann
    Email: pink at odahoda dot de
    WWW: http://pink.odahoda.de/
    Benjamin Niemann, May 29, 2007
    #11
  12. Guest

    On May 29, 7:12 pm, Benjamin Niemann <> wrote:
    > wrote:
    > > On May 29, 3:41 pm, Benjamin Niemann <> wrote:
    > >> wrote:
    > >> > HidingHTMLsourcecodeis possible. It requires JavaScript, but there
    > >> > is no need to encryptHTMLoutput or do anything else which would
    > >> > decrease performance. I discovered this about five years ago, but at
    > >> > that time it would have been considered bad practice in regards to
    > >> > cross-browser-compatibility. Now that AJAX has become a programming
    > >> > standard, the time has come to let this loose on the the public. I
    > >> > won't tell you how I do it, but I will provide you with a working
    > >> > example.

    >
    > >> >http://www.smart-cgi.com/api/

    >
    > >> > If anyone is able to crack this, I would appreciate the feedback.

    >
    > >>http://www.smart-cgi.com/api/rss.php?url=http://rss.news.yahoo.com/rs...

    >
    > >> so what?

    >
    > > Try this again:

    >
    > >>http://www.smart-cgi.com/api/rss.php?url=http://rss.news.yahoo.com/rss

    >
    > > and no I haven't moved, renamed or changed the output of this page.

    >
    > wget -O - -q --referer=http://www.smart-cgi.com/api/js.js\http://www.smart-cgi.com/api/rss.php?url=http://rss.news.yahoo.com/rs...
    >
    > --
    > Benjamin Niemann
    > Email: pink at odahoda dot de
    > WWW:http://pink.odahoda.de/


    Auch schon erledigt. Danke!

    > wget -O - -q --referer=http://www.smart-cgi.com/api/js.js\http://www.smart-cgi.com/api/rss.php?url=http://rss.news.yahoo.com/rss
    , May 29, 2007
    #12
  13. wrote:
    > Hiding HTML source code is possible. It requires JavaScript, but there
    > is no need to encrypt HTML output or do anything else which would
    > decrease performance. I discovered this about five years ago, but at
    > that time it would have been considered bad practice in regards to
    > cross-browser-compatibility. Now that AJAX has become a programming
    > standard, the time has come to let this loose on the the public. I
    > won't tell you how I do it, but I will provide you with a working
    > example.
    >
    > http://www.smart-cgi.com/api/
    >
    > If anyone is able to crack this, I would appreciate the feedback.


    Firefox's DOM Inspector--from the context menu for the HTML element,
    Copy XML to get the following on the Windows clipboard:

    <HTML lang="en" dir="ltr" xml:lang="en"
    xmlns="http://www.w3.org/1999/xhtml">
    <HEAD>
    <SCRIPT type="text/javascript" src="./js.js"/>
    <TITLE>
    Smart-CGI.com </TITLE>
    <META content="text/html; charset=UTF-8" http-equiv="Content-Type"/>
    <LINK type="text/css" href="./default.css" rel="stylesheet"/>
    </HEAD>
    <BODY onload="getNav('http://rss.news.yahoo.com/rss/topstories',
    urls);getXml('http://rss.news.yahoo.com/rss/topstories');return false;">
    <DIV class="headmast">
    <A href="../">
    <IMG style="border: medium none ; padding-left: 8px;"
    alt="Smart-CGI.com" src="../img/logo.gif"/>
    </A>
    </DIV>
    <DIV id="nav">
    <DIV class="navWrapper">
    <H1 class="navBlur">
    Top Stories </H1>
    <H1 class="navFocus">
    <A
    onclick="getNav(this.id,
    urls);getXml('http://rss.news.yahoo.com/rss/world');return false;"
    id="http://rss.news.yahoo.com/rss/world" class="nav"
    href="javascript:">
    World News </A>
    </H1>
    <H1 class="navFocus">
    <A
    onclick="getNav(this.id,
    urls);getXml('http://rss.news.yahoo.com/rss/us');return false;"
    id="http://rss.news.yahoo.com/rss/us" class="nav"
    href="javascript:">
    U.S. News </A>
    </H1>

    [etc.]
    It isn't the original source code, but it generates the equivalent page.
    Harlan Messinger, May 29, 2007
    #13
  14. wrote:

    > On May 29, 7:12 pm, Benjamin Niemann <> wrote:
    >> wget -O - -q --referer=http://www.smart-cgi.com/api/js.js\
    >> http://www.smart-cgi.com/api/rss.php?url=http://rss.news.yahoo.com/rs...

    >
    > Auch schon erledigt. Danke!


    What has changed? I don't see a difference.
    And even if - we could keep playing this game endlessly.
    You have to realize that your approach suffers from the same fundamental
    flaw as any other "IP protection": There is *no* way, your script could
    reliably differenciate between legitimate and 'bad' requests. It only sees
    a stream of incoming octets, which can be arbitrarily forged to mimic
    a 'legitimate visitor'.

    --
    Benjamin Niemann
    Email: pink at odahoda dot de
    WWW: http://pink.odahoda.de/
    Benjamin Niemann, May 29, 2007
    #14
  15. Ed Mullen Guest

    Ed Mullen, May 29, 2007
    #15
  16. n0ctis Guest

    If it exists, it is obtainable. If the browser can read it, so can you.
    n0ctis, May 29, 2007
    #16
  17. <> schreef in bericht
    news:...
    >
    > If anyone is able to crack this, I would appreciate the feedback.
    >


    I don't get it, under IE I use the Instant Source plugin and it displays the
    source straight away.
    So what is hidden??

    Cheers,
    Sam
    Samuel van Laere, May 29, 2007
    #17
  18. dorayme Guest

    In article <465c505a$0$16946$>,
    JWS <> wrote:

    > wrote:
    >
    > > http://www.smart-cgi.com/api/
    > >
    > > If anyone is able to crack this, I would appreciate the feedback.

    >
    > Just clicking file, save page as, web page complete (in Mozilla
    > Seamonkey) reveals the whole sorry mess. No cracking is involved.


    And so too in Safari.

    --
    dorayme
    dorayme, May 30, 2007
    #18
  19. dorayme Guest

    In article <>,
    Harlan Messinger <> wrote:

    > wrote:
    > > Hiding HTML source code is possible. It requires JavaScript, but there
    > > is no need to encrypt HTML output or do anything else which would
    > > decrease performance. I discovered this about five years ago, but at
    > > that time it would have been considered bad practice in regards to
    > > cross-browser-compatibility. Now that AJAX has become a programming
    > > standard, the time has come to let this loose on the the public. I
    > > won't tell you how I do it, but I will provide you with a working
    > > example.
    > >
    > > http://www.smart-cgi.com/api/
    > >
    > > If anyone is able to crack this, I would appreciate the feedback.

    >
    > Firefox's DOM Inspector--from the context menu for the HTML element,
    > Copy XML to get the following on the Windows clipboard:
    >
    > <HTML lang="en" dir="ltr" xml:lang="en"
    > xmlns="http://www.w3.org/1999/xhtml">
    > <HEAD>
    > <SCRIPT type="text/javascript" src="./js.js"/>
    > <TITLE>
    > Smart-CGI.com </TITL ...


    etc

    On FF 2.0.0.3 on Mac, this technique gets only this on the Mac
    clipboard:

    <HTML>
    <HEAD>
    <SCRIPT type="text/javascript" src="./js.js"/>
    </HEAD>
    <BODY/>
    </HTML>

    --
    dorayme
    dorayme, May 30, 2007
    #19
  20. Neredbojias Guest

    On Tue, 29 May 2007 13:14:07 GMT scribed:

    > Hiding HTML source code is possible.


    No, it isn't. Try Flash or something like that. It may be possible to
    hide that source code, but dunno fo' sure.

    --
    Neredbojias
    He who laughs last sounds like an idiot.
    Neredbojias, May 30, 2007
    #20
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. ross

    hide my source code/

    ross, Jun 27, 2003, in forum: HTML
    Replies:
    17
    Views:
    4,113
    Daniel Doman
    Jun 28, 2003
  2. Cloud Burst
    Replies:
    11
    Views:
    1,021
  3. Replies:
    1
    Views:
    372
    Steve C. Orr [MCSD, MVP, CSM, ASP Insider]
    Jun 20, 2008
  4. Immortal Nephi

    How to hide your source code?

    Immortal Nephi, Aug 10, 2009, in forum: C++
    Replies:
    1
    Views:
    481
    Marcel Müller
    Aug 10, 2009
  5. Replies:
    5
    Views:
    167
    Ferd Berfle
    Sep 7, 2005
Loading...

Share This Page