This is for password recovery. A user enters their email address into a search field, which gets or posts to the results page. The results page contains hidden fields which collect information based on the entered email address, and pass that information to the page that processes the email to be sent. The results page automatically submits with BODY onLoad, but obviously still comes up for a few seconds. While the results page is up, the browser screen is blank white, but if you view source, you can see all of the collected information to be emailed. That's the problem.
This part of the code in particular:
<input name="txtBody" type="hidden" id="txtBody" value="
Hello,
This is an automated message. You can use the following login information to access our protected pages:
USERNAME: <%=(Recordset.Fields.Item("username").Value)%>
PASSWORD: <%=(Recordset.Fields.Item("password").Value)%>
Please let us know if you have any questions. Thank you.
Tech Support Dept.">
So it is easy to encrypt the ASP code itself with the MS script encoder, but the values still come back in HTML. Therefore, when you view the source, it looks like:
USERNAME: admin
PASSWORD: example
Or whatever the username/password for that particular user is. How can I hide this? Thanks a lot.
This part of the code in particular:
<input name="txtBody" type="hidden" id="txtBody" value="
Hello,
This is an automated message. You can use the following login information to access our protected pages:
USERNAME: <%=(Recordset.Fields.Item("username").Value)%>
PASSWORD: <%=(Recordset.Fields.Item("password").Value)%>
Please let us know if you have any questions. Thank you.
Tech Support Dept.">
So it is easy to encrypt the ASP code itself with the MS script encoder, but the values still come back in HTML. Therefore, when you view the source, it looks like:
USERNAME: admin
PASSWORD: example
Or whatever the username/password for that particular user is. How can I hide this? Thanks a lot.
