[pmwiki-users] Trivial eProtect suggestion

Patrick R. Michaud pmichaud at pobox.com
Sat May 7 20:12:47 CDT 2005


On Sun, May 08, 2005 at 12:10:02PM +1200, Simon wrote:
> The best way to protect email addresses properly is to only build them
> on the client side using a script.
> (email harvesters are unlikely to go to effort of interpreting a javascript)
> 
> For a trivial eProtect I'd like to have
> * PmWiki generate a call to a javascript routine for every mailto link it 
> generates
> [...]
> * I don't want to see them munged in the wiki.d files, and simply
> changing them to character entities may help, but is really trivial to
> overcome and provides no protection!

If you don't munge the addresses in the wiki.d/ files, then address
harvesters can grab the cleartext addresses via ?action=edit or
?action=source (unless you have those password protected somehow).
Or, you have to be sure to munge them when displaying those forms,
which basically amounts to same thing as munging them in the wiki.d/
files.

Pm



More information about the pmwiki-users mailing list