Re: Code added to my XHTML source files giving problems
- From: "Alan J. Flavell" <flavell@xxxxxxxxxxxx>
- Date: Fri, 18 Nov 2005 19:50:31 +0000
On Fri, 18 Nov 2005, Leif wrote:
....
> http://www.npc.nato.int/htm/home.htm
> However, as maintainer of this page I can assure everybody that I have never
> used this attribute. The source file do certainly not have this attribute,
> so it must be added by somebody or something else ??? Who, what and why ???
Is this being served-out by some server-side processor, that's
mangling your original source before sending it out to the web?
For example, inserting the snippet of code for the google search?
For example, sticking random numbers onto all the URLs in order to
make the site cache-hostile? As if these HTTP response headers
weren't bad enough:
Server: webserver
Cache-Control: no-cache, must-revalidate
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Type: text/html
Last-Modified: Fri Nov 18 19:21:39 2005
....
Pragma: no-cache
- claiming that the page was last modified just seconds before it was
retrieved, but had already expired in the last millennium, and so
on...
> I have also noted that most of URL's have got something added like the
> following:
> ?tsfsg=c13c0c805f0331c7eb1d7d5e78b6ba94, which is alsocompletely unknown to
> me.
Quite.
> Last but not least I am not able to see the source code using menu
> View/source as normal (browser ie version 6.0 sp2).
Get a proper web browser and developer tools, such as Mozilla with the
web developer toolbar. Design for the web, not for MSIE.
> Thanks for any clarification you can provide.
Design a less hostile web page.
Do a sanity check with a text browser:
| Powered by Google logo
No, it's not powered by the Google logo...
| Get Acrobat Reader logo
No, I don't want the logo, thank you. This makes no sense.
At least, on the text browser it was possible to identify the link to
the site map - which is more than can be said for the graphical view.
Oh, I begin to get it - this javascript stuff that's called out from
the end of the page, like:
<script type='text/javascript'
src='../scr/menu.js?tsfsg=e4431f1eb17303a6df63440dd70d239a'></script>
When the browser (in this case Mozilla) attempts to retrieve the URL
of the script, the server sends it a 302 redirection, along with a
cookie: the redirection is to the URL of an HTML page and, not
surprisingly, Mozilla throws a javascript error when fed with an HTML
page instead of javascript.
HTTP/1.1 302 OK
Pragma: no-cache
Connection: close
Server: webserver
Set-Cookie:
st8id=6a9a38d9b6bfb7cc8891d96d068d72d8.00.a1d0f4480995293c59f3758d7
0e2feed.AAjLhk3FVSGNpwCAXfBknKUwv6yofN7m1u8M55u+WCc18yqd9m0jWDFeNZ8j64QSxj7S9q1
7N+GH7mqwEwnvhjEX0ZlE51PukdwSs3FE5uCF7uda3nJnPv7vLL7UZTPE14rfoyFHP5akudnzytY2rp
z8ZJoJTj503DID1GNOEBZexQH/N6azB34TE58=; domain=.npc.nato.int; path=/
Accept-Ranges: none
Location:
http://www.npc.nato.int/?tsfsg=9a5b8a3a897394f93240b9f7e175f336
^^^^^^^^^^^^^^^^^
This is an HTML page, not javascript
What an enormous effort to achieve hostile results! And I'll bet it's
a lot worse under the covers than we can see from the outside.
.
- References:
- Prev by Date: Re: Code added to my XHTML source files giving problems
- Next by Date: Re: Code added to my XHTML source files giving problems
- Previous by thread: Re: Code added to my XHTML source files giving problems
- Next by thread: Re: Code added to my XHTML source files giving problems
- Index(es):
Relevant Pages
|
