Re: how to post without certain data appearing in the html source

This WebDNA talk-list message is from

2001


It keeps the original formatting.
numero = 36986
interpreted = N
texte = Hello,On Fri, 06 Jul 2001 10:01:43 John Peacock wrote: > Dale Therio wrote: > > > > Hello, > > > > I am working with a company to provide SMS services on my > site (text messaging to your cel phone for the non-europeans[...]> > So, how do I post a message to them, without having that > > info appear in the html source? (I will be paying for SMS > > messages in lots, so protecting this is very important) > > > Post is by its very nature public, readable, HTML. Unless > you can > encrypt your user/password pair, there is nothing you can do. > > > > I have not started coding anything yet as frankly I am not > > positive which way to go. > > > > I am currently running 3.0.7 on Mac OS and hope to upgrade > to v4.x soon, then later in the year to Mac OS X on 4.x. > > > > There is a possibility I can use TCPConnect which should > allow me to not display my info in the html source. > > TCPConnect is POST without a browswer; it is still plaintext. > > > > I would love to have a way to store the data in a database, > then send it a moment later which would hide all data. > Problem again is the posting to their site. > > Are you concerned about users on your site being able to hack > your > templates and see the SMS site user information or are you > concerned > about the user information being visible to the SMS site. I am concerned that a user could see my username and password to log into the SMS server. If they have that information they could setup a page on their server/homepage and send SMS messages on my dime. > Describe how the program flow would happen so we can give you > better advice. If a user logs into your site and sends the > SMS via the other site, then TCPConnect would work fine > (since it does not return anything to the browser (except > what you want it to). There are a couple of ideas for using this technology. The simplist idea is that user 1 can send a message to user 2 via a form on my site.User one logs into the site, finds another user he wishes to contact then in a similar fashion to how I have email replies sent, clicks on a button which brings up a form to enter their message. Then submits and the email (SMS in this case) is sent. User 1 then gets a confirmation page which shows the content of the message they just sent.The second possible use is for notifications of something going happening on the site. User 1 has configured his preferences to be notified of certain events that may occur on the site (such as a specific user logging on), when the specified user logs on, it will run in effect a trigger to see if someone has this user in their notify list. Then the system would send an SMS message to user 1 letting them know that user 2 is on the site (or for example in the chat room). > The other option is have the user's > template create the SMS message in a global folder and have a > Trigger come along every minute and process all outgoing > SMS messages (think about how e-mail works currently). Currently my email works like this:User clicks on send me an email link, gets a form (I pass the profile ID of the intended recipient). User fills out the form, clicks submit, on the results page I do a search, then within the search I do the [sendmail] which is the only place the recipent email address is exposed (and being within the sendmail it is not in the html source), and present the result page.Are you suggesting that doing the same, but with a TCPConnect would (should) result in similar results? Should I wrap the [tcpconnect] with [spawn]?I also will need to put some checking code in the page to prevent multiple sendings of the same message which could happen if they use the back button or in the case of Netscape, resize the browser window or hit reload. I had many problems in the past with people doing that when adding content to the database. The more I think about it, the better I like the idea of trying to store this in a database then sending. That will prevent the duplicate data problem and I will also me restricting how many messages each user can send per month. > Why don't you get a Windows box to run their software on and > then you don't have to worry at all. Use W2K Workstation > (NOT SERVER) with Service Pack 1 (NOT 2!!!!) and you should > be fine. Oh, and be sure that you have a good firewall...Simple answer here - cost. The site is a hobby site, which is struggling to make the transition to a business. As it is all of the costs to run this site come out of my pocket and buying yet another machine to co-locate just isn't in the cards. I would also have to run their software on the windows machine which would them require I find a way to talk from my Mac webserver to the windows machine. To Anne, about 20% of my users are using some sort of set top box, like WebTV I-opener etc, I am concerned that Javascript might not work for them. > JohnThank you to John, Anne and Christer for your suggestions/feedback, any additional ideas also welcome.------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: how to post without certain data appearing in the html source (Aaron Lynch 2001)
  2. Re: how to post without certain data appearing in the html source (John Peacock 2001)
  3. Re: how to post without certain data appearing in the html source (Glenn Busbin 2001)
  4. Re: how to post without certain data appearing in the html source (John Peacock 2001)
  5. Re: how to post without certain data appearing in the html source (Christer Olsson 2001)
  6. Re: how to post without certain data appearing in the html source (Anup Setty 2001)
  7. Re: how to post without certain data appearing in the html source (Dale Therio 2001)
  8. Re: how to post without certain data appearing in the html source (Dale Therio 2001)
  9. how to post without certain data appearing in the html source (Dale Therio 2001)
Hello,On Fri, 06 Jul 2001 10:01:43 John Peacock wrote: > Dale Therio wrote: > > > > Hello, > > > > I am working with a company to provide SMS services on my > site (text messaging to your cel phone for the non-europeans[...]> > So, how do I post a message to them, without having that > > info appear in the html source? (I will be paying for SMS > > messages in lots, so protecting this is very important) > > > Post is by its very nature public, readable, HTML. Unless > you can > encrypt your user/password pair, there is nothing you can do. > > > > I have not started coding anything yet as frankly I am not > > positive which way to go. > > > > I am currently running 3.0.7 on Mac OS and hope to upgrade > to v4.x soon, then later in the year to Mac OS X on 4.x. > > > > There is a possibility I can use TCPConnect which should > allow me to not display my info in the html source. > > TCPConnect is POST without a browswer; it is still plaintext. > > > > I would love to have a way to store the data in a database, > then send it a moment later which would hide all data. > Problem again is the posting to their site. > > Are you concerned about users on your site being able to hack > your > templates and see the SMS site user information or are you > concerned > about the user information being visible to the SMS site. I am concerned that a user could see my username and password to log into the SMS server. If they have that information they could setup a page on their server/homepage and send SMS messages on my dime. > Describe how the program flow would happen so we can give you > better advice. If a user logs into your site and sends the > SMS via the other site, then TCPConnect would work fine > (since it does not return anything to the browser (except > what you want it to). There are a couple of ideas for using this technology. The simplist idea is that user 1 can send a message to user 2 via a form on my site.User one logs into the site, finds another user he wishes to contact then in a similar fashion to how I have email replies sent, clicks on a button which brings up a form to enter their message. Then submits and the email (SMS in this case) is sent. User 1 then gets a confirmation page which shows the content of the message they just sent.The second possible use is for notifications of something going happening on the site. User 1 has configured his preferences to be notified of certain events that may occur on the site (such as a specific user logging on), when the specified user logs on, it will run in effect a trigger to see if someone has this user in their notify list. Then the system would send an SMS message to user 1 letting them know that user 2 is on the site (or for example in the chat room). > The other option is have the user's > template create the SMS message in a global folder and have a > Trigger come along every minute and process all outgoing > SMS messages (think about how e-mail works currently). Currently my email works like this:User clicks on send me an email link, gets a form (I pass the profile ID of the intended recipient). User fills out the form, clicks submit, on the results page I do a search, then within the search I do the [sendmail] which is the only place the recipent email address is exposed (and being within the sendmail it is not in the html source), and present the result page.Are you suggesting that doing the same, but with a TCPConnect would (should) result in similar results? Should I wrap the [tcpconnect] with [spawn]?I also will need to put some checking code in the page to prevent multiple sendings of the same message which could happen if they use the back button or in the case of Netscape, resize the browser window or hit reload. I had many problems in the past with people doing that when adding content to the database. The more I think about it, the better I like the idea of trying to store this in a database then sending. That will prevent the duplicate data problem and I will also me restricting how many messages each user can send per month. > Why don't you get a Windows box to run their software on and > then you don't have to worry at all. Use W2K Workstation > (NOT SERVER) with Service Pack 1 (NOT 2!!!!) and you should > be fine. Oh, and be sure that you have a good firewall...Simple answer here - cost. The site is a hobby site, which is struggling to make the transition to a business. As it is all of the costs to run this site come out of my pocket and buying yet another machine to co-locate just isn't in the cards. I would also have to run their software on the windows machine which would them require I find a way to talk from my Mac webserver to the windows machine. To Anne, about 20% of my users are using some sort of set top box, like WebTV I-opener etc, I am concerned that Javascript might not work for them. > JohnThank you to John, Anne and Christer for your suggestions/feedback, any additional ideas also welcome.------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ Dale Therio

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Pager notification of completed orders (1998) flushdatabases (1997) New Image Gallery using WebDNA and ImageMagick (2003) I'm tired of all this! (2000) [REPLACE] inside [FOUNDITEMS] (1998) Post arguments problem mac? (1997) WebCatalog for Postcards ? (1997) [Webcat 2]Next (1997) [defined]ish (1997) Word-And searches (2000) accessing Webcat from another server (2000) HTTP header line is too long? (1997) searching twice on same field (1998) Install problem (Was Bad Install) (2003) [OT] Airport Network (2003) [AppendFile] problem (WebCat2b13 Mac .acgi) (1997) Stripping attachments in shared pop (2005) Free pack for the New UPS ratings and services tool (2000) WebCatalog2 Feature Feedback (1996) PCS Emailer's role ? (1997)