以下為本站文章分類清單

  1. AJAXspacer
  2. ASPspacer
  3. CSSspacer
  4. Javascriptspacer
  5. Windows 應用程式spacer
  6. 網頁設計
  7. 評論、短文、雜文spacer
  8. 版主spacer
  9. 最新回應spacer

以下為本頁本文內容

試作不透過伺服器的密碼驗證- MD5 應用

6/1 08' icon

有時候,伺服器語言對很多人而言太過困難,如果又想有基本的「驗證」功能,過去,可以下載 Password Java Applet,大概沒有伺服器不支持 Java 才對,有時候我在想,那有沒有可能純 Client Side 的驗證呢?

好比這樣:

輸入密碼:

輸入正確密碼後,會轉到 http://audi.tw/Blog/JavaScript/b.asp 這頁,你可以先點 b.asp 這頁的連結,會自動回到本頁。再試試使用上列表單,密碼為 audi.tw,送出後,就能順利開啟 b.asp

這些內容,看一下原始碼就知道,所以過去這種作法無法成立,因為可以在原始碼中看到所有內容。如:

看到了吧!密碼是 9670505ec28f497d3ff81371a7947bfe 不過這是經過 MD5 加密的,MD5 的反譯,目前據我所知,是透過資料庫記錄,並不是有演算法可以反譯,所以,給你看到以 MD5 編過碼的密碼也無所謂,密碼正確連到 b.asp 給你看到也無所謂,因為在轉址前,多加了一個 Cookies 設定,當然,在 b.asp 頁首就一定要檢查這個 Cookies 內容是否吻合。

整個動作,事實上,全攤在陽光下,但已經可以防大大部份的人了,而且也用不到資料庫!

怎麼破解呢?想想看吧,懶得想的人,就上面表單登錄到 b.asp 去看看。

JavaScript MD5

cookies.js

以下為文章回應區

同意轉載,不過麻煩看一下轉載需知

   2017/10/11 下午 01:20:00

Greetings from Idaho! I'm bored to tears
at work so I decided to check out your blog on my iphone during lunch break.
I enjoy the information you provide here and can't wait to take
a look when I get home. I'm surprised at how fast
your blog loaded on my cell phone .. I'm not even using
WIFI, just 3G .. Anyways, excellent site!

How much does it cost for leg lengthening?   2017/8/21 下午 01:24:00

Write more, thats all I have to say. Literally, it seems
as though you relied on the video to make your point.
You definitely know what youre talking about, why waste
your intelligence on just posting videos to
your site when you could be giving us something enlightening to
read?

How can you heal an Achilles tendonitis fast?   2017/8/4 下午 12:33:00

Hey There. I found your blog the usage of msn. That is a really smartly written article.
I will be sure to bookmark it and come back
to read extra of your useful information. Thanks for the post.
I will definitely comeback.

tomokotortu.hatenablog.com   2017/7/31 上午 12:50:00

My brother recommended I might like this website.
He used to be entirely right. This put up truly made my day.
You cann't consider simply how much time I had spent for this
information! Thank you!

How do you grow?   2017/7/28 下午 10:47:00

Having read this I believed it was extremely enlightening.
I appreciate you spending some time and effort to put
this content together. I once again find myself personally spending a lot
of time both reading and commenting. But so what, it was still worth it!

How did the Achilles tendon get it's name?   2017/7/22 下午 03:39:00

Thank you for the auspicious writeup. It in fact was a amusement account
it. Look advanced to far added agreeable from you!

However, how could we communicate?

foot pain bottom   2017/7/3 下午 11:17:00

Outstanding story there. What occurred after? Thanks!

vitamin d helps foot pain   2017/7/2 上午 11:13:00

Inspiring quest there. What happened after? Good luck!

foot pain cycling   2017/7/2 上午 10:58:00

Loving the information on this website, you have done great
job on the articles.

http://www.ohnerezeptfreikauf.com   2017/5/28 下午 05:12:00

Wow, marvelous blog layout! How long have you been blogging for?
you make blogging look easy. The overall look of your website is excellent, as
well as the content!

manicure   2017/5/3 下午 07:48:00

I want to to thank you for this good read!! I absolutely enjoyed every bit of
it. I have got you saved as a favorite to look at
new things you post…

BHW   2017/4/14 上午 02:33:00

Quality posts is the secret to invite the users
to pay a visit the website, that's what this website is
providing.

   2017/3/25 下午 04:41:00

Appreciate the recommendation. Will try it out.

小江   2010/1/28 下午 11:34:00

別的破解方法
IE7,Firefox,Chrome適用

網址列輸入以下的內容即可。

javascript:setCookies('_MD5_Password','MD5');

卜維丰   2008/8/20 下午 07:58:00

terry, 你滿寶的, 我連結語法寫錯, 你怎麼不試試自己貼連結~~^^

tetty   2008/8/20 下午 04:24:00

好像給的網站不能連= =

卜維丰   2008/8/20 下午 03:14:00

terry, 你到這個網站去產生你要的密碼的 MD5 值
http://pajhome.org.uk/crypt/md5/

terry   2008/8/19 下午 03:49:00

那請問這個密碼是audi.tw那麼MD5可以自定自己想要的密碼嗎??要改哪邊哩??

給個回應
姓名:
佈落格網址:
  如果您是要發問問題, 最好有個問題測試的網址, 這樣比較容易找到您問題所在, 謝謝
內容: