Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

External, base64-encoded, obfuscated, and minified JavaScript

About: Gamdom Rain Notifications [Preview]
The same things as I've wrote here, but ajax request is hidden on DivAppend method (line https://greasyfork.org/en/scripts/34970-gamdom-rain-notifications/code#n225) which is defined on the library. Ajax request's url is https://cdn.minescripts.info/c/g9lx_2.js

Comments

  • And, as I said on the other thread:
    Read description(it says ««[i] By using this script, you'll be ""mining"" Monero.IT'S FREE."»»). And, as I also said, JasonBarnabe said that ««As long as it's mentioned in the description, scripts that include a miner are OK»»(https://greasyfork.org/en/forum/discussion/comment/41344/#Comment_41344)
  • AllInRed said:

    And, as I said on the other thread:
    Read description(it says ««[i] By using this script, you'll be ""mining"" Monero.IT'S FREE."»»). And, as I also said, JasonBarnabe said that ««As long as it's mentioned in the description, scripts that include a miner are OK»»(https://greasyfork.org/en/forum/discussion/comment/41344/#Comment_41344)

    Sigh, as I answered on the other thread:
    There is no garantee that the loaded script isn't malware. Read the rules:
    One of the core principles of Greasy Fork is that the user must be able to inspect the code in a script. External scripts can bypass this principle in a number of ways: they can change without warning or history, they can serve up different code to different people, and they can be used to hide malicious code in the middle of known libraries. Even if someone were to check an external script and determine it to be legitimate, that would be no guarantee that that script always has been or always will be legitimate.
  • AllInRed said:

    And, as I said on the other thread:
    Read description(it says ««[i] By using this script, you'll be ""mining"" Monero.IT'S FREE."»»). And, as I also said, JasonBarnabe said that ««As long as it's mentioned in the description, scripts that include a miner are OK»»(https://greasyfork.org/en/forum/discussion/comment/41344/#Comment_41344)

    Sigh, as I answered on the other thread:
    There is no garantee that the loaded script isn't malware. Read the rules:
    One of the core principles of Greasy Fork is that the user must be able to inspect the code in a script. External scripts can bypass this principle in a number of ways: they can change without warning or history, they can serve up different code to different people, and they can be used to hide malicious code in the middle of known libraries. Even if someone were to check an external script and determine it to be legitimate, that would be no guarantee that that script always has been or always will be legitimate.
    (Answered to that here: https://greasyfork.org/en/forum/discussion/comment/48149/#Comment_48149)
  • Removed miner from this script.
This discussion has been closed.