Avatar for Username

Tìm kiếm hỗ trợ

Tránh các lừa đảo về hỗ trợ. Chúng tôi sẽ không bao giờ yêu cầu bạn gọi hoặc nhắn tin đến số điện thoại hoặc chia sẻ thông tin cá nhân. Vui lòng báo cáo hoạt động đáng ngờ bằng cách sử dụng tùy chọn "Báo cáo lạm dụng".

Tìm hiểu thêm

Chủ đề này đã được lưu trữ. Vui lòng hỏi một câu hỏi mới nếu bạn cần giúp đỡ.

can i deny the firebug extention to protect my .js files on my website? how can i do that?

  • 2 trả lời
  • 3 gặp vấn đề này
  • 3 lượt xem
  • Trả lời mới nhất được viết bởi a1ex_sinner

a1ex_sinner
a1ex_sinner
more options

In the tab "html" witch in Firebug panel everyone who want's can see the content of my javascript.

I did like this, but the Firebug still tricking script.

function do (style) { if(navigator.userAgent.indexOf('MSIE')==-1) { var scr=document.createElement('script'); scr.type='text/javascript'; scr.src='js/style/'+style+'.js'; } else { var scr=document.createElement("<script type=\"text/javascript\" src=\"js/style/"+style+'.js'+"\"></"+"script>"); } document.documentElement.getElementsByTagName('HEAD')[0].appendChild(scr); }

do("fill"); do("fcats");

In the tab "html" witch in Firebug panel everyone who want's can see the content of my javascript. I did like this, but the Firebug still tricking script. function do (style) { if(navigator.userAgent.indexOf('MSIE')==-1) { var scr=document.createElement('script'); scr.type='text/javascript'; scr.src='js/style/'+style+'.js'; } else { var scr=document.createElement("<script type=\"text/javascript\" src=\"js/style/"+style+'.js'+"\"></"+"script>"); } document.documentElement.getElementsByTagName('HEAD')[0].appendChild(scr); } do("fill"); do("fcats");

Tất cả các câu trả lời (2)

jscher2000 - Support Volunteer
jscher2000 - Support Volunteer
  • Top 25 Contributor
more options

It's hopeless. Because the JavaScript code must be sent to the browser in order to run, you can't prevent sophisticated users from seeing it.

Firebug isn't even necessary: the page source can be viewed by pressing Ctrl+u and if the JavaScript is in a separate file, clicking the link to the file in the <script> tag will display it. When you add the script dynamically, it still can be viewed using the Web Developer extension or the DOM Inspector extension. The file probably is in the cache as well.

Many people "minify" their script code, which makes it extremely difficult to read. However, some people still can make sense of it. (I'm not one of them.)

What's so important to hide, anyway?

a1ex_sinner
a1ex_sinner Người tạo câu hỏi
more options

Yes, it's very important to hide it.

I did some settins in .htaccess so if someone trying to access script by using the path nothing is displaying. Also this method doesn't show the content inside <script...>" and "</script>" when you viewing the page source (except Firebug).

Cache is denied by http-headers.

I already thought about the last one you wrote about. I'l try to minify the code later, but now I want to protect it in other availible ways. Really, very bulky stuf and it needs more protection.

About the extention (how to block). Founded this article but there is no such property (at least in last version of Firebug) window.console.firebug = undefined.

Được chỉnh sửa bởi a1ex_sinner vào