I'm not sure if you can do this in PHP, but I used a scheme once where the
password was the same for all users, and it was used as the name of an html
document which redirected them to the pagef of interest. So there was never
any mention of the password in any code. All the code did was to
concatenate the path to the re-direction page with the password to create
the full filename in the call to bring up the page.
Hope this helps.
Dave Ray
H 619 656-9897
C 619 454-0082
[EMAIL PROTECTED]
----- Original Message -----
From: "Larry Kavounas" <[EMAIL PROTECTED]>
To: <[email protected]>
Sent: Monday, June 19, 2006 10:33 PM
Subject: [nonspam] Re: "Encrypting" the html source,so "Edit-View-Source"
shows binary characters
Carl-
Thanks for your patience! The fact that I did not mention it goes to show
you what a newbie I am...
I am writing a web application, where the customers log in with a user
name and password. The customers are regular people doing their regular
job; no military; no banking. I am only trying to protect the customers'
legal privacy. I do not aspire to beat CIA or NSA!
I would like to prevent (if possible) hackers from viewing the source,
finding the INPUT field names, and writing a script that honors me with a
few hundred thousand gratuitous login posts per minute.
I could store their IP address in advance... with a random string... and
write the string in a picture with some weird colors and fancy fonts...
and show them the picture... and use a turing test so as to prove their
eyeballs are human... and and start to block out their IP addresses... but
why should I go into all this trouble? It would be so much simpler if they
just did not know the variables for user name and password! I want PHP to
ECHO a string so that the browser works normally, and the user experiences
a normal web page. But when they view the source, it is useless to them.
Any other ideas that solve this problem are appreciated!
Thanks again,
Larry Kavounas
--
[email protected]
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-newbie
--
[email protected]
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-newbie
