469,290 Members | 1,882 Online
Bytes | Developer Community
New Post

Home Posts Topics Members FAQ

Post your question to a community of 469,290 developers. It's quick & easy.

Security of HTML pages

This is very possibly the wrong place to ask this so I'd appreciate any
suggestions on better places to ask....
I want to post my resume on my friend's server so that I can give the URL
out to prospective employers. However, since I was planning to put my street
address, email address, and phone number in the resume, I am concerned that
this information will wind up getting harvested by telemarketers, perhaps
via "cataloging spiders" or "automated screen scrapers" or other automated
tools. I definitely DON'T want telemarketers calling me, sending me snail
mail spam, emailing me, or banging on my door to flog their wares.

Is there any reasonably secure way to put this information on a web page so
that telemarketers or others cannot harvest my information against my
wishes? What percentage would you put on the security offered by this
technique? 100%? 80%? 20%?

If the best I can hope for is only 80% security, then I'm inclined to leave
my snail mail address and phone number off the resume, use a throwaway
Hotmail-type email address, and suggest that visitors of the page use the
Hotmail-type email to get my street address or phone number if they want
them. Then, of course, I would only give that information out to what I
believed were legitimate prospective employers.

Or am I being way too paranoid? I've heard a lot about identity theft in
recent years so maybe I'm over-reacting to the risk....

--
Rhino
---
rhino1 AT sympatico DOT ca
"There are two ways of constructing a software design. One way is to make it
so simple that there are obviously no deficiencies. And the other way is to
make it so complicated that there are no obvious deficiencies." - C.A.R.
Hoare
Jul 23 '05 #1
6 1388
Rhino wrote:
Is there any reasonably secure way to put this information on a web
page so that telemarketers or others cannot harvest my information
against my wishes? What percentage would you put on the security
offered by this technique? 100%? 80%? 20%?


Several ways:
1. Password-protect the page, and send the password via email to those
who should get to the site.
2. Simply exclude search engines via the Robots.txt file, or meta-tags.
(You may still be found, but not as easy.)
3. Attach your Resume to the email in Word-Format.

--
Google Blogoscoped
http://blog.outer-court.com
Jul 23 '05 #2
In article <WH*********************@news20.bellglobal.com>,
Rhino <rh****@NOSPAM.sympatico.ca> wrote:
[snip]

I want to post my resume on my friend's server so that I can give the URL
out to prospective employers. However, since I was planning to put my street
address, email address, and phone number in the resume, I am concerned that
this information will wind up getting harvested by telemarketers, perhaps
via "cataloging spiders" or "automated screen scrapers" or other automated
tools. I definitely DON'T want telemarketers calling me, sending me snail
mail spam, emailing me, or banging on my door to flog their wares.

[snip]


I wouldn't worry too much about it. My resume has been on the web for
several years in plain html format with all that info and I haven't had
a problem with any of that.

= Eric
--
= Eric Bustad, Norwegian bachelor programmer
Jul 23 '05 #3
In article <34*************@individual.net>,
"Philipp Lenssen" <in**@outer-court.com> wrote:
Rhino wrote:
Is there any reasonably secure way to put this information on a web
page

[...]
2. Simply exclude search engines via the Robots.txt file, or meta-tags.
(You may still be found, but not as easy.)
To the best of my knowledge that's nonsense. There is nothing about
robots.txt that offers any level of security. Consider it a mechanism to
politely request to not index the contents of directory x, no more.
3. Attach your Resume to the email in Word-Format.


Perhaps if you're only interested in jobs in M$-only-land, yes ;)

--
Sander Tekelenburg, <http://www.euronet.nl/%7Etekelenb/>
Jul 23 '05 #4
"Rhino" wrote in comp.infosystems.www.authoring.html:
Is there any reasonably secure way to put this information on a web page so
that telemarketers or others cannot harvest my information against my
wishes?


Let me rephrase:

Is it possible to make something publicly accessible so that bad
people won't have access to it?

No.

--
Stan Brown, Oak Road Systems, Tompkins County, New York, USA
http://OakRoadSystems.com/
HTML 4.01 spec: http://www.w3.org/TR/html401/
validator: http://validator.w3.org/
CSS 2.1 spec: http://www.w3.org/TR/CSS21/
validator: http://jigsaw.w3.org/css-validator/
Why We Won't Help You:
http://diveintomark.org/archives/200..._wont_help_you
Jul 23 '05 #5
Sander Tekelenburg wrote:
In article <34*************@individual.net>,
"Philipp Lenssen" <in**@outer-court.com> wrote:

2. Simply exclude search engines via the Robots.txt file, or
meta-tags. (You may still be found, but not as easy.)


To the best of my knowledge that's nonsense. There is nothing about
robots.txt that offers any level of security. Consider it a mechanism
to politely request to not index the contents of directory x, no more.


Which is why I said "You may still be found, but not as easy." And
yeah, Google is respecting Robots.txt, and many people use Google, so
*you may not be found as easy*. I exclude my Resumee from Google simply
because I don't want people to find it that easily. I still know it's
public, and there's no harm in that. It's just hidden from 5-second
googling.

--
Google Blogoscoped
http://blog.outer-court.com
Jul 23 '05 #6
"Rhino" <rh****@NOSPAM.sympatico.ca> writes:
I want to post my resume on my friend's server so that I can give the URL
out to prospective employers. However, since I was planning to put my street
address, email address, and phone number in the resume, I am concerned that
this information will wind up getting harvested by telemarketers, perhaps
via "cataloging spiders" or "automated screen scrapers" or other automated
tools. I definitely DON'T want telemarketers calling me, sending me snail
mail spam, emailing me, or banging on my door to flog their wares.


Only email addresses are harvested in that way, and yours is likely to
be harvested from Usenet. You use two different ways of obscuring your
email address, both of which are very standard. If spammers haven't
already made programs to find such "obfuscated" email addresses, it's
only a matter of time until they do.

People have mentioned password protection; this is slightly better than
using a random URL in that URLs get stored in proxy server logs while
passwords do not, but this advantage is slight enough that I generally
recommend random URLs.

The robots.txt caution to prevent indexing by google, etc., is only
useful in two levels. If robots.txt advises search engines to avoid
/mytopsecretfolder, then it also advises the bad guys exactly where to
look. Unless your real files are under /mytopsecretfolder/beo328ddbq9

--

http://ourdoings.com/ Let your digital photos organize themselves.
Sign up today for a 7-day free trial.
Jul 23 '05 #7

This discussion thread is closed

Replies have been disabled for this discussion.

Similar topics

6 posts views Thread by Olaf Baeyens | last post: by
1 post views Thread by Sam Vanderstraeten | last post: by
1 post views Thread by The Eeediot | last post: by
4 posts views Thread by tony | last post: by
reply views Thread by Sergio E. | last post: by
reply views Thread by Sergio E. | last post: by
1 post views Thread by =?Utf-8?B?TWFuanJlZSBHYXJn?= | last post: by
1 post views Thread by CARIGAR | last post: by
reply views Thread by zhoujie | last post: by
By using this site, you agree to our Privacy Policy and Terms of Use.