Javascript blocked by IE?

[vinod]

Hi,
The application we have developed uses JavaScript extensively. One of
the users of the application is facing a problem. Instead of being
hidden, the javascript code in the HTML is displayed or should I say,
printed, on the browser. On viewing the rendered source, I'm seeing
that all the "script" tags are rendered as "scrip!", "onLoad" as
"onLoa!" in the HTML. Now I tried disabling Javascript on my browser
but this did not happen with me. As far as I know, the user does not
have any toolbars installed in her browser. Can anyone tell me how to
go about solving this problem?

Vinod

 

[Evertjan.]

vinod wrote on 11 dec 2007 in comp.lang.javascript:

The application we have developed uses JavaScript extensively. One of
the users of the application is facing a problem. Instead of being
hidden, the javascript code in the HTML is displayed or should I say,
printed, on the browser. On viewing the rendered source, I'm seeing
that all the "script" tags are rendered as "scrip!", "onLoad" as
"onLoa!" in the HTML. Now I tried disabling Javascript on my browser
but this did not happen with me. As far as I know, the user does not
have any toolbars installed in her browser. Can anyone tell me how to
go about solving this problem?

Try to know more about the tools on her browser,
and possibly the proxi she uses.

Does another browser on her machine the same?

Do all wab pages on her browser the same?

Come on, give us more pertinent info!

 

[VK]

Hi,
The application we have developed uses JavaScript extensively. One of
the users of the application is facing a problem. Instead of being
hidden, the javascript code in the HTML is displayed or should I say,
printed, on the browser. On viewing the rendered source, I'm seeing
that all the "script" tags are rendered as "scrip!", "onLoad" as
"onLoa!" in the HTML. Now I tried disabling Javascript on my browser
but this did not happen with me. As far as I know, the user does not
have any toolbars installed in her browser. Can anyone tell me how to
go about solving this problem?

As already pointed out, nothing really you can do client-side. The
problematic user connected to the network/Internet via proxy server
with Squid filter installed (script.so). If it's all the same intranet
then demand to kill Squid for local addresses. If it is a security
demand of your organization them I'm afraid that you vasted your
development efforts for nothing: start over with full server-side
solution.

 

[vinod]

As already pointed out, nothing really you can do client-side. The
problematic user connected to the network/Internet via proxy server
with Squid filter installed (script.so). If it's all the same intranet
then demand to kill Squid for local addresses. If it is a security
demand of your organization them I'm afraid that you vasted your
development efforts for nothing: start over with full server-side
solution.

Ok, here's some more information:
1. User is an end user and belongs to another organisation.
2. The user does not always have this problem but it happens quite
often and on different pages on the website.
3. The user apparently does not have a problem with any other website.
The user visits google and yahoo websites frequently and does not have
this problem with those sites. The user has not mentioned about any
other websites the user visits.

@ VK
1. What is a Squid filter (script.so)? I can try and check with IT
department of the other organization.
2. Is this a proxy server issue or could this be a virus/trojan on
this users machine. Are there any known viruses/trojans that changs
script to scrip! and onLoad to onLoa! or something similar.

 

[Thomas 'PointedEars' Lahn]

Ok, here's some more information: 1. User is an end user and belongs to
another organisation.

That would support the "intermittent proxy" theory.

2. The user does not always have this problem but it happens quite often
and on different pages on the website.

Further research by you is clearly indicated.

3. The user apparently does not have a problem with any other website.
The user visits google and yahoo websites frequently and does not have
this problem with those sites. The user has not mentioned about any other
websites the user visits.

The filter can be customized or adaptive.

@ VK

Sorry, I reply.

1. What is a Squid filter (script.so)? I can try and check with IT
department of the other organization.

Squid is an HTTP proxy. Proxies can not only cache requested data, they
can also modify the HTTP response received by the client. I would assume
that script.so is the filename of a program (in the widest possible sense)
for the proxy that can modify code related to client-side scripting so that
it is not executed. If that would be the case, this particular script
should be updated or disabled because it should not cause the served markup
to break as described.

Incidentally, proxy servers are one reason why client-side scripts should be
employed in a way that the Web site degrades gracefully. And as I have
pointed out in another thread, the user may not have the choice (not to use
the organization's proxy) and may not need to do anything to their UA for
the client-side script not to function.

2. Is this a proxy server issue

Probably it is.

or could this be a virus/trojan on this users machine.

Anything is possible, although a computer virus or Trojan *Horse* is
unlikely. Malware such as this does not tend to disable technology that
could be used for its propagation or eavesdropping, given the required
security leaks.

Are there any known viruses/trojans that changs script to scrip! and
onLoad to onLoa! or something similar.

I don't know any.

You should check with a network/security newsgroup about that. The impact
of proxies on design decisions regarding Web sites that use client-side
scripting aside, this is quite off-topic here.


PointedEars

 

[VK]

1. What is a Squid filter (script.so)? I can try and check with IT
department of the other organization.

Thomas already answered to this question. In the most simple terms it
is GreaseMonkey/magicFunction-like tool but running server-side. They
are doing the same thing: taking 3rd party content and alter it
without content owner notification in different ways before forward it
to the end user.

2. Is this a proxy server issue or could this be a virus/trojan on
this users machine.

In the programming it can be anything including but not limited by
trojans, goblins, Sun radiation and an aliens' conspiracy Still
90% of chances are for Squid running on the other organization's proxy
server.

You have to contact the server admin and ask him to add your domain
into trusted list or remove it from untrusted list - that depends on
what kind of list - inclusive or exclusive - is used there. Normally
no one filter breaks all sites on the Web but only some with an
insufficient trust. This is why your user doesn't always get scrip!'ed
pages. They may be running Squid for a short time only (a week or two)
this is why for your own site some pages are served from browser's
cache so OK and some expired, refreshed so served broken. I had a
number of similar situations on the help desk in the past.