this is true about javascript: it can read the file system and display it back to the browser only. It cannot transmit this info back to the server.
BUT... you could then use another javascript include file on another server (cross-site scripting) and regular expressions within that file to read the text on the browser. example: find all text between this character string and that character string, then submit in a hidden form field or using SOAP to another server. if you write the code for both pages, then you can define the beginning and ending strings so you know what to look for. peace, dude in tx. > > I think you are mistaken. Javascript can display directory contents to > the client browser, but not transmit that info back to the server. > Unless I am mistaken ;) > > On Wed, 6 Mar 2002, ruler wrote: > > >_There are also sites that will let you view all of your directory trees, > >_which a server could easily see all of your files. Which do you think is > >_more scary? > >_----- Original Message ----- > >_From: "leon" <[EMAIL PROTECTED]> > >_To: <[EMAIL PROTECTED]> > >_Sent: Tuesday, March 05, 2002 12:30 PM > >_Subject: scary site > >_ > >_ > >_> -----BEGIN PGP SIGNED MESSAGE----- > >_> Hash: SHA1 > >_> > >_> http://www.liquidwd.freeserve.co.uk/ > >_> > >_> > >_> Try it with a windows machine and IE with all patches. > >_> > >_> Be afraid be very afraid. > >_> > >_> FYI this is for all those people who are think that just having a > >_> firewall is enough. > >_> > >_> Guess what? > >_> > >_> This works through packet filter, stateful inspection and proxy > >_> servers. > >_> > >_> Cheers, > >_> > >_> Leon > >_> > >_> -----BEGIN PGP SIGNATURE----- > >_> Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com> > >_> > >_> iQA/AwUBPIUArNqAgf0xoaEuEQLn0wCgjtpLPuRxLbCscHrq32IjePeezf8AoI6t > >_> T73+xCv/VhrCGDVDIVrFBqZl > >_> =9gR6 > >_> -----END PGP SIGNATURE----- > >_> > >_ > > -- > > Thanks, > > John Ellingsworth > Information Architect > > http://cu2k01.med.upenn.edu > http://www.cu2000.med.upenn.edu > > +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+- > |j|e|l|l|i|n|g|s|@|ma|i|l|.|med|.|u|p|e|n|n|.|e|d|u| > -+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ > > > > > > <br> _______________________________________________________________________________ This E-Mail was sent with Webmail from http://www.echostation.com. However, Echo Station, NovaTech Web Services, or any other affiliated company take no responsibility for the content or appropriateness of any email sent utilizing this service.
