Labels Milestones

New Issue

Obfuscate non HTTPS links #90

Open

opened 1 year ago by wiktor · 2 comments

wiktor commented 1 year ago

Right now XMPP URIs are printed verbatim in the source. It would be better if the were obfuscated so that the scraping bots could not reach them.

(this may also apply to e-mail addresses not sure)

Right now XMPP URIs are printed verbatim in the source. It would be better if the were obfuscated so that the scraping bots could not reach them. (this may also apply to e-mail addresses not sure)

yarmo commented 1 year ago

Owner

That is a fair point. Anything that does not require a rel=me link doesn't need to be transferred as is.

Possible solution: weak encoding like ROT13 (your suggestion 😉)

Problem: no-JS optimized pages should render without requiring further processing and therefore without encoding

Possible solution: URLs that will trigger the full SSR experience (say, https://[...]?ssr=true) can skip encoding. This is assuming that there won't a bot specifically targeted at keyoxide and adapted to add ?ssr=true to URLs.

That is a fair point. Anything that does not require a rel=me link doesn't need to be transferred as is. Possible solution: weak encoding like ROT13 (your suggestion 😉) Problem: no-JS optimized pages should render without requiring further processing and therefore without encoding Possible solution: URLs that will trigger the full SSR experience (say, `https://[...]?ssr=true`) can skip encoding. This is assuming that there won't a bot specifically targeted at keyoxide and adapted to add `?ssr=true` to URLs.

yarmo added the

help wanted

label 1 year ago

yarmo added this to the Feature development project 1 year ago

yarmo added the

enhancement

low hanging fruit

labels 1 year ago

yisraeldov commented 11 months ago

The sensitive data could also be "encoded" as an image.

Pandoc can obfuscate by using the hex-references. That could be an option as well.

Specify a method for obfuscating mailto: links in HTML documents. none leaves mailto: links as they are. javascript obfuscates them using JavaScript. references obfuscates them by printing their letters as decimal or hexadecimal character references. The default is none.

The sensitive data could also be "encoded" as an image. Pandoc can obfuscate by using the hex-references. That could be an option as well. > Specify a method for obfuscating mailto: links in HTML documents. none leaves mailto: links as they are. javascript obfuscates them using JavaScript. references obfuscates them by printing their letters as decimal or hexadecimal character references. The default is none.

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

0.1.0

0.2.0

0.2.1

0.3.0

0.3.1

0.4.0

1.0.0

2.0.0

2.0.0-rc.1

2.0.0-rc.2

2.0.0-rc.3

2.0.1

2.0.2

2.1.0

2.1.1

2.2.0

2.2.1

2.2.2

2.2.3

2.2.4

2.2.5

2.2.6

2.2.7

2.2.8

2.3.0

2.3.1

2.3.2

2.3.3

2.3.4

2.4.0

2.4.1

2.4.2

2.5.0

3.0.0

3.0.1

3.0.2

3.0.3

3.0.4

3.1.0

3.1.1

3.2.0

3.3.0

3.3.1

Labels

Apply labels

Clear labels

bug
Something is not working duplicate
This issue or pull request already exists enhancement
New feature help wanted
Need some help invalid
Something is wrong low hanging fruit
Beginner friendly issues question
More information is needed wontfix
This won't be fixed

No Label bug duplicate enhancement help wanted invalid low hanging fruit question wontfix

Milestone

Set milestone

Clear milestone

No items

No Milestone

Projects

Clear projects

No project

Feature development

Assignees

Assign users

Clear assignees

No Assignees

3 Participants

Notifications

Subscribe

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

This issue currently doesn't have any dependencies.

Write Preview

Loading…

Cancel

Save

There is no content yet.