dty9731 2016-03-27 19:07
浏览 32

保护js文件下载(Hack)

I learning php and jquery. I 'am using ajax very well.

But what happend if something know the name of mi js file? for example ajax_security.js, and the he can download the file. He can seen my pass key or how the page work.

fos Example :ajax_security.js

$.ajax bla bla data{can_pass:yess;}

While in other php file are wainting .. if($_POST[can_pass]=='yess'){ you can enter and do anything!}

Can I hidde the js file from the bad people? Is a bad languaje jquery?

Thank You!!

  • 写回答

1条回答 默认 最新

  • dsxgby126001 2016-03-27 19:11
    关注

    The client side JavaScript will always be readable by the visitor, since his/her browser will need to execute the script. The security should be placed in the files executed by the server (the PHP files in this case).

    评论

报告相同问题?

悬赏问题

  • ¥15 用visual studi code完成html页面
  • ¥15 聚类分析或者python进行数据分析
  • ¥15 逻辑谓词和消解原理的运用
  • ¥15 三菱伺服电机按启动按钮有使能但不动作
  • ¥15 js,页面2返回页面1时定位进入的设备
  • ¥50 导入文件到网吧的电脑并且在重启之后不会被恢复
  • ¥15 (希望可以解决问题)ma和mb文件无法正常打开,打开后是空白,但是有正常内存占用,但可以在打开Maya应用程序后打开场景ma和mb格式。
  • ¥20 ML307A在使用AT命令连接EMQX平台的MQTT时被拒绝
  • ¥20 腾讯企业邮箱邮件可以恢复么
  • ¥15 有人知道怎么将自己的迁移策略布到edgecloudsim上使用吗?