search

theajack / disable-devtool

Disable web developer tools from the f12 button, right-click and browser menu
https://theajack.github.io/disable-devtool/
MIT License
1.97k stars 191 forks source link

You are making the world a worse place #114

Open Mubelotix opened 1 month ago

theajack commented 4 weeks ago

@Mubelotix So please tell me why content producers cannot take some measures to try to protect their labor results.

Mubelotix commented 4 weeks ago

@Mubelotix So please tell me why content producers cannot take some measures to try to protect their labor results.

If you need clientside protection then I have very bad news for you: this will never be effective. I bet that websites relying on this are extremely insecure due to the false sense of security their developers might feel. Anyone that has the technical skills to attack your website has the technical skills to disable this tool in like, 15 seconds max. This is just annoying

theajack commented 3 weeks ago

I know there is no way to protect the client. So what I said is to try to protect it. In addition, if the website owner doesn't want you to see his stuff, why do you want to see it? @Mubelotix

theoneandonlyjxd commented 1 week ago

If you need clientside protection then I have very bad news for you: this will never be effective.

Yes, using it for client-side protection is not very smart, but why shouldn't we use it? It makes our users harder to get scammed by putting unknown javascript into their client

Rudxain commented 6 days ago

unknown javascript into their client

Firefox requires typing allow paste, but not all browsers provide similar protections, so I can see why it's kinda reasonable to block dev-tools. I wish it wasn't a perma-block, but rather a soft conditional-block that the user can easily (but willingly) unlock

Mubelotix commented 6 days ago

Yeah sure as if this tool was used for "security". If it wasn't made to be a pain in the ass it would also support easy disabling for power users. Every single website I have seen using this was illegal and probably used it to protect themselves from law-enforcement and competitors. Great.

anburocky3 commented 1 day ago

It would be useful for online quiz kind of apps where students think they are smart will open dev-tools and inspect.

Mubelotix commented 23 hours ago

It would be useful for online quiz kind of apps where students think they are smart will open dev-tools and inspect.

No it's not. A quiz app needs to perform checks on the server. Answers should never be sent to clients

Rudxain commented 14 hours ago

quiz app needs to perform checks on the server

For serious grading, yes! because the client is proving knowledge to the server.

For a non-serious quiz or a self-grading tool, it's better client-side. I'm not saying that justifies use of disable-devtool, that's beside(s) the point

anburocky3 commented 13 hours ago

It would be useful for online quiz kind of apps where students think they are smart will open dev-tools and inspect.

No it's not. A quiz app needs to perform checks on the server. Answers should never be sent to clients

Right as you said, but they can check what are the server fields that arrive through the api request using Network resource tab.

Most developers will get all fields and show only certain field data in the UI. using this method, we can able to see the full fields of that api. It helps me.,