[OT] Encrypting Embedded URLs
Hi, I'm looking for a two-way cipher to obfuscate URL parameters safely and succinctly (not too many extra characters). # For example, something that converts this URL: $url = 'http://www.foo.com?a=1212u=http://www.foo1.com?a=12323'; # to an encoded URL with the parameters obfuscated print Simple::URLEncode($url); # that looks like this: http://www.foo.com?params=aJHKJHKJHKJHHGHFTDTDGDFDFGDGHDHG879879 A built-in checksum would be a bonus ... any ideas? Thanks Nigel -- Nigel Hamilton Turbo10 Metasearch Engine email: [EMAIL PROTECTED] tel:+44 (0) 207 987 5460 fax:+44 (0) 207 987 5468 http://turbo10.com Search Deeper. Browse Faster.
Re: [OT] Encrypting Embedded URLs
# For example, something that converts this URL: $url = 'http://www.foo.com?a=1212u=http://www.foo1.com?a=12323'; # that looks like this: http://www.foo.com?params=aJHKJHKJHKJHHGHFTDTDGDFDFGDGHDHG879879 Why are you trying to do this? What's the goal here? xoox, Andy -- 'Andy Lester[EMAIL PROTECTED] Programmer/author petdance.com Daddy parsley.org/quinn Jk'=~/.+/s;print((split//,$) [unpack'C*',n2]3%+\34.'%.'^%4+!o.'])
Re: [OT] Encrypting Embedded URLs
Nigel Hamilton writes: http://www.foo.com?params=aJHKJHKJHKJHHGHFTDTDGDFDFGDGHDHG879879 A built-in checksum would be a bonus ... any ideas? You can use any of the Crypt::CBC ciphers. We then use a modified MIME::Base64 encoding which is more compact than encrypt_hex and doesn't require a subsequent escaping for URI specials. See http://petshop.bivio.biz/src?s=Bivio::MIME::Base64 for the simple algorithm (the error checking hack on MIME::Base64::decode may no longer be necessary with newer versions of MIME::Base64). Rob
Re: [OT] Encrypting Embedded URLs
# For example, something that converts this URL: $url = 'http://www.foo.com?a=1212u=http://www.foo1.com?a=12323'; # that looks like this: http://www.foo.com?params=aJHKJHKJHKJHHGHFTDTDGDFDFGDGHDHG879879 Why are you trying to do this? What's the goal here? HI, So it's not easy for someone to read the parameters ... and also because sometimes embedded URL's parameters are not interpreted correctly - for example the a parameter below: $url = 'http://www.foo.com?a=1212u=http://www.foo1.com?a=12323'; Nige -- Nigel Hamilton Turbo10 Metasearch Engine email: [EMAIL PROTECTED] tel:+44 (0) 207 987 5460 fax:+44 (0) 207 987 5468 http://turbo10.com Search Deeper. Browse Faster.
Re: [OT] Encrypting Embedded URLs
Hi ( 02.04.18 17:32 -0500 ) Nigel Hamilton: I'm looking for a two-way cipher to obfuscate URL parameters safely and succinctly (not too many extra characters). If you just want to obfuscate, you can do a rot13, with special substitutions for non alpha charachters. Or any other 'roll your own' solution [XOR against 'snakeoil' then URL encode what needs it]. Something else requires that you think about key management [or public key cryptography], to say nothing of threat models. -- \js transition turn-key applications
Re: [OT] Encrypting Embedded URLs
Hello, JSIf you just want to obfuscate, you can do a rot13, with special JSsubstitutions for non alpha charachters. Or any other 'roll your own' JSsolution [XOR against 'snakeoil' then URL encode what needs it]. For simple obfuscation, I would prefer Base64 (using MIME::Base64 in Perl). It's simple, fast, standard, results in string totally composed from a well known character set that needs little further encoding, and well known with implementations in just about any language. You don't need to do anything special for non-alphanumeric characters, either (or indeed, for 8-bit data, which is the whole point of Base64 encoding). Humbly, Andrew -- Andrew Ho http://www.tellme.com/ [EMAIL PROTECTED] Engineer [EMAIL PROTECTED] Voice 650-930-9062 Tellme Networks, Inc. 1-800-555-TELLFax 650-930-9101 --
Re: [OT] Encrypting Embedded URLs
Nigel Hamilton wrote: I'm looking for a two-way cipher to obfuscate URL parameters safely and succinctly (not too many extra characters). Try Crypt::CBC. - Perrin
Re: [OT] Encrypting Embedded URLs
Hi, I read about this the other day... lemesee where did I read this... Oh yes! In Web Security, Privacy and Commerce by Simson Garfinkel, p. 453-454. The perl code is on those pages. Elizabeth Nigel Hamilton [EMAIL PROTECTED] writes: Hi, I'm looking for a two-way cipher to obfuscate URL parameters safely and succinctly (not too many extra characters). # For example, something that converts this URL: $url = 'http://www.foo.com?a=1212u=http://www.foo1.com?a=12323'; # to an encoded URL with the parameters obfuscated print Simple::URLEncode($url); # that looks like this: http://www.foo.com?params=aJHKJHKJHKJHHGHFTDTDGDFDFGDGHDHG879879 A built-in checksum would be a bonus ... any ideas? Thanks Nigel -- Nigel Hamilton Turbo10 Metasearch Engine email:[EMAIL PROTECTED] tel: +44 (0) 207 987 5460 fax: +44 (0) 207 987 5468 http://turbo10.comSearch Deeper. Browse Faster.