Prevent HTML Source Code Stealing [closed]

拈花ヽ惹草 提交于 2019-12-03 05:20:39

IMHO a good way would be presentations e.g. with TeamViewer or a similar software when you cannot go to your customer.

You could also provide screenshots or a basic remote access with vnc or so, where you customer can see but not touch the site.

The other answers here are just a set of hacks that can be undone.

The client side, HTML, CSS, and JS is made up of all open source technologies. While you could spend a lot of time trying to obfuscate your client side code, your best bet is just to practice better business logic.

The options open up widely on protections for server side code but your question seems to focus on client side code.

For well established trustworthy clients I am much more flexible but new clients I am super careful with. I demand progressive payments. For each deliverable there is a payment involved. That way if the relationship is ever severed both parties have what they want.

When you make yourself an easy mark for scammers you only attract scammers.

What you could do, is use HTML Image Maps with screenshots to create a basic, interactive version of the final product.

Use a website that have an escrow service, or an escrow-like service, where the employer pays all the money upfront to the website, and it will only be released to the coder after achieving a predefined goal.

Many freelancing websites provides this service.

falidoro

It's possible to encrypt your source code with javascript. Try this website: http://www.iwebtool.com/html_encrypter I never used this tool myself and I don't know if everything works well, but I think it's worth giving a shot. You can always upload the normal source code after being paid. Also, make sure that you have the right contact information of your client in the future. I also highly recommend using a contract in the future so that your client is legally bonded to pay you. Another possible option is giving your client nothing but a screenshot of the site, but of course your site will become static.

wowei

I've built a tool, which really encrypts your JS-sources - no simple obscurity by obfuscation, but good security by encryption.

See how it works here: http://ec2-176-34-64-10.eu-west-1.compute.amazonaws.com/nopro/xscroll - it's a demo only for hiding the script xscroll.js.

When you inspect the DOM in your client, all you see is: nplreq(url) for each script you bind into HTML head.

Encryption and decryption are totally transparent to the browser. It is tested with Firefox, Chrome, Opera, Konqueror, IE8-10, Dolphin and Safari on an Android tablet.

Encryption with AES (Rijndael 256) using one-shot-keys which are negotiated between client and (liblock-)server using Diffie-Hellman.

The sources are securely hidden, and only with really great efforts they may be reached again.

You could either just run the site on your laptop or put the entire site behind a login page that requires a password. You would be able to do live demos, but the client would not have access to the site until you have been paid.

易学教程内所有资源均来自网络或用户发布的内容,如有违反法律规定的内容欢迎反馈
该文章没有解决你所遇到的问题?点击提问,说说你的问题,让更多的人一起探讨吧!