View Full Version : Encoding & decoding? Pwd Security?

12-08-2004, 12:36 PM
Hi masters,

The following (var win open) JavaScript is encoded by the Windows Script Encoder (SCRENC):

<script language = JScript.Encode>#@~^fAAAAA==@#@&\CMPmxWDt.hbx[WS'Ar NWS Wa+xvE^)JJ*@#@&\C.,lUWD4+MhrU9WhxAbx[WS Kwn`rN)JJ*@#@&7l.PmxGO4+DSrx9Wh{Arx9WSRGwnUvJn)JE#@#@&dycAAA==^#~@</script>

The SCRENC encoding command doesn't contain any decoding command like SCRDEC. But Microsoft said the SCRENC can't guarantee the
real security of the encoded Scripts.

Are there any ways to decode the scripts like these?

If I embed passwords encoded in web pages like the above scripts, how many percentage will they secure? Should I do this?

Hearty thanks for your suggestions and guidance.

Best Regards,

Willy Duitt
12-08-2004, 01:25 PM

12-08-2004, 02:08 PM
As Javascript needs to be downloaded to the client in order for it to run, no amount of encoding will stop the user from seeing the actual code. You can only make it harder for the user to decode it.


12-08-2004, 03:12 PM
yawn yawn yawn ...

why are these threads becoming more prevalent. they're getting more and more wearisome by the day. :(

12-08-2004, 06:46 PM
There's an answer to this in the FAQ. Question 16: How do I hide my JavaScript source code?

12-09-2004, 01:04 AM
for something to be secure, it has 3 parts:
1)An encoded Message
2)An Original Message
3)A Key

If someone gets two of the above they can work out the original message, simply expressed as an eqation

Original Message + Key = Encoded Message

So having any two means that it will never be secure, as the third can be derived.

I read about this in an artical link from another thread about why DRM is pointless.


12-09-2004, 01:26 AM
I read about this in an artical link from another thread about why DRM is pointless.

Would that be the one Liorean linked to in Tech discussions (http://www.codingforums.com/showthread.php?t=47908)? That was a good read. Really summed it all up.