[4220] in WWW Security List Archive
Re: Netscape question
daemon@ATHENA.MIT.EDU (Morgan Miskell)
Fri Jan 31 11:37:27 1997
Date: Fri, 31 Jan 1997 09:39:27 -0500
From: Morgan Miskell <mormis@caro.net>
To: Murple <btherl@ariel.ucs.unimelb.edu.au>
CC: www-security@ns2.rutgers.edu
Errors-To: owner-www-security@ns2.rutgers.edu
Murple wrote:
>
Although stupid I'll waste the second or two and mention that you can
always to about:cache as the URL field in netscape and it will list the
files in cache (source list that is) and then just use a word processor
or something to look at the file :)
> > I was browsing around and found a page that took away the toolbar and menu
> > options in netscape to hide the source for the page. I was wondering if
> > anyone could tell me how it is done or where i can find out about it. Thanks!
>
> This is rather pointless - in order to display the page the client must have
> the source for it, so all one would need to do to obtain the soruce for such a
> page is to use a different client. If the server only allowed netscape clients
> to connect, you could simply connect manually, say you are netscape, and you
> would still get the source.
>
> Even if it was encrypted asymmetrically, so that only netscape clients could
> read it, it would eventually be broken - there are enough people with debuggers
> and time on their hands to make sure of that :)
>
> > Josh Gray
> > grayjr@cs.purdue.edu
> >
