By using this site, you agree to our updated Privacy Policy and our Terms of Use. Manage your Cookies Settings.
429,564 Members | 834 Online
Bytes IT Community
+ Ask a Question
Need help? Post your question and get tips & solutions from a community of 429,564 IT Pros & Developers. It's quick & easy.

Seeking feedback on Password Protection via Java/JavaScript ONLY (no cgi)

P: n/a

Seeking feedback on Password Protection via Java/JavaScript ONLY (no cgi):
SEE:

http://online_tools.home.att.net/tools.html

*AND*

http://online_tools.home.att.net/extraCode.htm

Thanks.

Oct 10 '05 #1
Share this Question
Share on Google+
7 Replies


P: n/a
Borked Pseudo Mailed wrote:
Seeking feedback on Password Protection via Java/JavaScript ONLY (no cgi):


Its rubbish. No different from just keeping the URL secret (except it
requires the user to have a JVM installed).

--
David Dorward <http://blog.dorward.me.uk/> <http://dorward.me.uk/>
Home is where the ~/.bashrc is
Oct 10 '05 #2

P: n/a
In article <5f******************************@pseudo.borked.ne t>,
no****@pseudo.borked.net says...

Seeking feedback on Password Protection via Java/JavaScript ONLY (no cgi):
SEE:

http://online_tools.home.att.net/tools.html

*AND*

http://online_tools.home.att.net/extraCode.htm


I must say that I'd thought I'd seen the world's worst web page. Until
two minutes ago, I now realise, I hadn't. Even at 1024x748 it's 29
pages long. I suspect the password thing is equally daft.

--

Hywel
http://kibo.org.uk/
Oct 10 '05 #3

P: n/a
Borked Pseudo Mailed said the following on 10/10/2005 4:43 PM:
Seeking feedback on Password Protection via Java/JavaScript ONLY (no cgi):
SEE:

http://online_tools.home.att.net/tools.html

*AND*

http://online_tools.home.att.net/extraCode.htm

Thanks.


complete and utter rubbish - both pages.
--
Randy
comp.lang.javascript FAQ - http://jibbering.com/faq & newsgroup weekly
Oct 10 '05 #4

P: n/a
There is a lot of stuff on http://online_tools.home.att.net/tools.html

I should have said: SEE ***bottom**** of
http://online_tools.home.att.net/tools.html
(since that's where the materials and presentation starts), and
then it continues on http://online_tools.home.att.net/extraCode.htm

Thanks.

Before I wrote:

Seeking feedback on Password Protection via Java/JavaScript ONLY (no cgi):
SEE:

http://online_tools.home.att.net/tools.html

*AND*

http://online_tools.home.att.net/extraCode.htm

Thanks.


Oct 10 '05 #5

P: n/a
Borked Pseudo Mailed schrieb:
There is a lot of stuff on http://online_tools.home.att.net/tools.html

I should have said: SEE ***bottom**** of
http://online_tools.home.att.net/tools.html
(since that's where the materials and presentation starts), and
then it continues on http://online_tools.home.att.net/extraCode.htm

Thanks.

Before I wrote:

Seeking feedback on Password Protection via Java/JavaScript ONLY (no cgi):
SEE:

http://online_tools.home.att.net/tools.html

*AND*

http://online_tools.home.att.net/extraCode.htm

Thanks.


Well, as allready the others said: That's really one of the worst
"password-protection" i've ever seen. Why? Because there's no
password-protection at all. The pages-URL is only hidden but the page is not
protected. Just go directly to the page with a browser without or deactivated JS
and you're getting the page. Oh, yes, the content is made invisble by CSS
"visibility: hidden" - but all the content is there, CSS can be overwritten in
lot browsers or the page can be saved and changed or you can use a browser
without css or ... You see why that's rubbish?
Oct 10 '05 #6

P: n/a
> You see why that's rubbish?

That's nothing.

I had a web development lecturer who gave my class a test on the web,
really easy questions. Anyway it was in a form using JS and no CGI and
the first thing I did went I saw it was to open up the source and looked
at a couple of the arrays that tell you all the correct answers.

When it comes to data security No CGI = No good. You cannot hide the source.

Ollie
Oct 11 '05 #7

P: n/a
Martin Kurz:

I put all the security measures into effect now in the live sample,
so you can understand and I made a couple other improvements.
Try it again!! I double dog dare yah!!

see bottom: http://home.att.net/~online_tools/tools.html

and http://home.att.net/~online_tools/extraCode.htm again now

AND RUN THE SAMPLE AND TRY TO OUTSMART IT!! It will outsmart you.
I believe this will now satisfy all parties
as well as my online tests (with encrypted anwsers on-board) satisfy
users of that throughout the lan). Also check out the world famous
Universal Test Scorer near the top of
http://home.att.net/~online_tools/tools.html

Oct 11 '05 #8

This discussion thread is closed

Replies have been disabled for this discussion.