[advanced search]
Next Live Event: NamePros Live Auction, May 23rd at 6PM EDT
Results from the May 8th live auction are here.
31 members in the live chat room. Join Chat!
Register Rules & FAQ NP$ Store Active Threads Mark Forums Read
Go Back   NamePros.Com > Design and Development > Programming > CODE
Reload this Page Form security script
User Name
Password

Old 01-09-2008, 01:26 AM   · #1
music_man
NamePros Member
 
Name: William Parry
Location: New Zealand
Trader Rating: (1)
Join Date: Jun 2005
Posts: 94
NP$: 13.00 (Donate)
music_man is on a distinguished road
Form security script
Hi,

This is an onscreen keyboard written in js to help against keyloggers.

http://williamparry.com/scripts/formSecurity/index.html

Feedback appreciated.

Cheers


Please register or log-in into NamePros to hide ads
__________________
Self-service
My homepage
music_man is offline   Reply With Quote
Old 01-09-2008, 04:20 AM   · #2
DeViAnThans3
Spamzor.com
 
DeViAnThans3's Avatar
 
Name: Hans
Location: Belgium
Trader Rating: (35)
Join Date: Apr 2006
Posts: 442
NP$: 2022.35 (Donate)
DeViAnThans3 is a name known to allDeViAnThans3 is a name known to allDeViAnThans3 is a name known to allDeViAnThans3 is a name known to allDeViAnThans3 is a name known to allDeViAnThans3 is a name known to all
Looks nice! For sites which require or want a high security, this could be quite suitable!

What I'ld do additionally, is making sure that people can't type anything in there (onkeypress javascript). Or are at least warned that they should use the onscreen keyboard for their own safety.

Note though that this form of security only can handle keyloggers. Network sniffers will still find the information very easily.
__________________
Useless is cool!
Work From Home Opportunities -
1 link ... 1 month ... 5 NP$ ] Real bargain! Limited to 1 month.
DeViAnThans3 is offline   Reply With Quote
Old 01-09-2008, 08:10 AM   · #3
maximum
NameAdmins.com
 
maximum's Avatar
 
Name: -Unknown-
Location: Inside your head...
Trader Rating: (10)
Join Date: Oct 2005
Posts: 705
NP$: 70.15 (Donate)
maximum is a splendid one to beholdmaximum is a splendid one to beholdmaximum is a splendid one to beholdmaximum is a splendid one to beholdmaximum is a splendid one to beholdmaximum is a splendid one to beholdmaximum is a splendid one to beholdmaximum is a splendid one to behold
William, thanks for sharing. Nice idea
Originally Posted by DeViAnThans3
....
What I'ld do additionally, is making sure that people can't type anything in there (onkeypress javascript). Or are at least warned that they should use the onscreen keyboard for their own safety. ....

Good idea to add this, IMHO.
Originally Posted by DeViAnThans3
Looks nice! For sites which require or want a high security, this could be quite suitable!
....
Note though that this form of security only can handle keyloggers. Network sniffers will still find the information very easily.

Wouldn't such be smart to be using SSL, etc., as part of the site's overall "high" security?
__________________
Show a soldier you care: The Gratitude Campaign
WhoIs search from the root registries
maximum is offline  
  Reply With Quote
Old 01-09-2008, 11:58 AM   · #4
gamescoper
NamePros Member
 
Trader Rating: (0)
Join Date: Jan 2008
Posts: 71
NP$: 277.85 (Donate)
gamescoper is an unknown quantity at this point
great script brilliant idea for online banking as well and if you can set it that the user cannot change the security level even better
gamescoper is offline   Reply With Quote
Old 01-09-2008, 11:59 AM   · #5
music_man
NamePros Member
 
Name: William Parry
Location: New Zealand
Trader Rating: (1)
Join Date: Jun 2005
Posts: 94
NP$: 13.00 (Donate)
music_man is on a distinguished road
Thanks for the feedback!

Your right that it doesn't prevent network sniffing, but as maximum said, SSL should cover that (and SSL encryption is better than any JS encryption).

gamescoper - it was originally designed to have the security setting set only by webmaster but I thought that if the user wants something easier to use (but less secure) then they can set it themselves.

Perhaps I should add a variable in the embed script that states whether the user can set their own security?

Cheers

William
__________________
Self-service
My homepage
music_man is offline   Reply With Quote
Old 01-09-2008, 07:33 PM   · #6
xrvel
xrvel is cruel :-)
 
xrvel's Avatar
 
Name: Kurniawan
Location: Indonesia
Trader Rating: (17)
Join Date: Nov 2007
Posts: 781
NP$: 3182.31 (Donate)
xrvel is a name known to allxrvel is a name known to allxrvel is a name known to allxrvel is a name known to allxrvel is a name known to allxrvel is a name known to all
Cool
Nice script.
I tried to resize my browser and the 'keypad window' still on the top right part of my browser

Kurniawan.
__________________
Domain Name Generator | (how to)
xrvel is offline   Reply With Quote
Reply

NamePros is a revenue sharing forum.
« Free File Hosting V1.1 | Please Read Before Posting »

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Forum Jump


Site Sponsors
www.clixnhits.com Get Me Visits Venta de dominios Compra tu dominio
Advertise your business at NamePros
All times are GMT -7. The time now is 03:53 PM.

Advertise At NamePros - Contact Us - NamePros.Com - Archive -Privacy Statement -Top

Powered by: vBulletin Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Search Engine Friendly URLs by vBSEO 2.4.0