I recently played with HTML5 location finder, and its relatively simple to pull some place from a device such as iPhone.
I want to write an application that uses location data, but it is important that the location is actual. In other words, I need to prevent people from creating fake mail on a website / web service with fake GPS coordinates.
Is it necessary to collect GPS coordinates from a mobile device using the HTML5 geolocation assembler and reliably transmit it back to the web service in such a way that someone cannot post a message with the same data and the "system" so to speak?
Not without serious encryption on the payload on the client. What if there is money, someone will reverse engineer and figure out how to create actual payloads. Remember, if there is money or fame, then someone will think that trying to do something like this is βworth it.β If your web service is available to the public and does not use some kind of encryption anything on the client, make sure someone with a network connection can not sniff your protocol and forge any data that they want. And SSL will not cut it. Anyone can proxy the SSL connection on their local network to decrypt the payload and check it for the content of their hearts.
. . , . . , ? User-Agent? Pfft, . GPS? Pfft, . -? Pfft, .
, (.. HTTPS) . HTML, CSS JavaScript - , Firebug Greasemonkey.
, , , , , SQL HTML-, . - " "? , , .
. . , . Bruce Schneiers quip " , " . , " ", . , , , / - fuzz - .
, , , - .
Source: https://habr.com/ru/post/1751274/More articles:Special and accented characters - javaThe correct display name / field for the list item in the Sharepoint list (using web services) is listimport massive data into MySQL - performanceGrails: editing and deleting links does not work - filterHow can I reorganize our type parameter from this code? - genericsGrails: How do I get my page to load a filter when the page loads? - filterPHP: When submitting an HTML form, is HTTP_REFERER set? - html$ this-> headTitle () does not work - phpJavascript associative variable - javascriptMake two fields with the same height - htmlAll Articles