[DUG] Work Wanted in Wellington
Leigh Wanstead
leigh.wanstead at gmail.com
Fri Jul 4 09:13:15 NZST 2014
Hi Phil,
Thanks
That is exactly what I am doing. I encrypt the data between client and
server and it seems working yesterday. :-)
I am sure that the hacker is driving browser by script. I force the
javascript must be executed at client side to talk to the server. Maybe the
hacker can run javascript in a javascript runtime engine. I am not sure
about that.
Regards
Leigh
On 4 July 2014 09:05, Phil Scadden <p.scadden at gns.cri.nz> wrote:
>
> > Regarding to render the website in Javascript, how are you going to
> > stop the browser driven by script? The hacker does not need to
> > understand the javascript. All he need is just grab dom element.
> That would be true but very unlikely that hacker is using browser. Too
> slow. If you load the html with junk data and modify it with js, it may
> take the hacker a long time to notice they are using crap. But I would
> looking at detecting the hacker without a tip off in first place and
> then figure out ways to make life difficult.
>
>
> --
> Phil Scadden, Senior Scientist GNS Science Ltd 764 Cumberland St,
> Private Bag 1930, Dunedin, New Zealand Ph +64 3 4799663, fax +64 3 477
> 5232
>
> Notice: This email and any attachments are confidential.
> If received in error please destroy and immediately notify us.
> Do not copy or disclose the contents.
>
> _______________________________________________
> NZ Borland Developers Group - Delphi mailing list
> Post: delphi at listserver.123.net.nz
> Admin: http://delphi.org.nz/mailman/listinfo/delphi
> Unsubscribe: send an email to delphi-request at listserver.123.net.nz with
> Subject: unsubscribe
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://listserver.123.net.nz/pipermail/delphi/attachments/20140704/6198693d/attachment.html
More information about the Delphi
mailing list