Gentlemen,

The biggest drawback I see with use of CDML is that your code is visible on the web. Any "ELEGENT" idea about how to protect your code?

I guess there is several options are available

1. Disable right click using JS - so source of page is not visible

2. Use FMP-Include

3. Make windows without location bar so users can't see where they are..

But I can crack them all. Also, if a user gets to know the database name - they can easily strip contents/modify using XML.

Anyone ever thought of anything?

I use a protected ScriptMaker script to remove data from a Web Sharing db to one which is not set for Web Sharing.

To hide code from the browser "Source", you can use frames.

Then there are problems in 4.0 and 5.0 which are supposedly resolved in 5.5 and 6.0. Those problems are addressed at:

http://www.fmforums.com/threads/showthreaded.php?Cat=&Board=UBB21&Number=19032&Search=true&Forum=UBB21&Words=chazboi&Match=Username&Searchpage=0&Limit=25&Old=1year&Main=19032

And why only "gentlemen"? There are ladies who design FileMaker solutions who are also quite competent to respond.

Best protection is in v. 6 -- separate folder for CDML.

To the "Intelectual property - CDML" I must just laugh. You can get all my tricks and use them

To prevent USERS fiddling with URLs and such stuff I am using all combined methods - chromeless forced frames, disabled right click etc. which is hard to crack and make no sense to spend time on that.

And no XML hacking on our server -- we have our security filter sitting before FM WC filtering out "hacking" requests.

I use the 'Web Security' database.

Garry

Not for hidding HTML/CDML files

Ok Garry, you use WS. But which version are you running? I could have sworn that I already addressed the version issue.

I was addressing the comment:

"they can easily strip contents/modify using XML."

The WS database has exactly the same restrictions (and weakness's) for XML and CDML.

I use 5.5

All the best.

Garry

Garry, thank you for the clarification.