Hide email addresses and links.

* 23 February, 2005 - improved link modifying code.
* 24 April, 2004 - expanded description and function.

The purpose of this offering is only to hide email addresses and links from programs that mine pages for such information. The techniques used here will effectively hide these things from those 'bots.

This is really simple to do. But you must follow some simple rules, and make sure your HTML is clean of any reference to either E-mail, or links into vital areas of your business. Here is how simple it is to do...

Never, EVER, include a valid E-mail address or link into your site in the HTML source of your page. This includes "meta" statements which are a source for 'bots.
ALWAYS include a fake email address within your page to satisfy the search algorithm of the miner program. If you are "nice", then you will make sure that your fake address is not really someone else's address. A way to measure effectiveness would be to have your fake business address point to a non-business email address that you own. That way, any mail you get there had to come from someone who mined your business site.
Never, EVER, flaunt yourself by making your fake address insulting - that is the way to get "bombed"! What we are trying to do here, is to fake them out, and make them leave us alone. Not call attention to ourselves.
Never, EVER, do a document.write as a way to "decrypt" data as your page loads. ALWAYS wait for the person to select some function from your page before you insert the correct code. This is one of the major failings of all of the so-called encryption programs. After their page loads, all the correct plain text is in the page Document Object of the browser cache and can be displayed with JavaScript. With my system the correct data does not get inserted until you hit a PayPal buy, or an email, button!
Never, EVER, include your JavaScript in the same file as the HTML. Always put it in a separate file. This does not hide it, but creates another step that may be discourageing.
This simple example only plugs the "business" value in the PayPay button, and a reference E-mail address. It may be expanded to include the "return", or the "cancel_return" links, or the IPN links - it is pretty simple to do.

What this will not protect you from is some Beavis that decides to "hack" you. In this case you must resort to other techniques. The most common is to have two E-mail addresses - one that is public, and one that you only give out to verified customers. This is not perfect, either, but it delays the bombardment by spammers.

A more complex approach is to have your primary E-mail address hosted by a service such as Yahoo!, and make use of their SpamGuard software. It is actually pretty good, and filters out over 95% of the crap messages you normally get.

One of the new advantages of larger ISPs is that they are filtering out viruses, and "spam" better than you can do it yourself. Smaller ISPs are gonna have to catch up!

View the source of this page, and see what is there. There is nothing for a spam 'bot to harvest! (except for the fake stuff!)

In the JavaScript (JS) there are three functions: One is designed for any FORM that contains a PayPal "business" reference that is called from the onsubmit event handler (EH) of every FORM in your site (FixBusi), one that will correct any link within the FORM (FixLink), aad the last is an EH called from any email link in your site (FixMail). See how I did it in this example.

Installation.

Put the JavaScript (JS) in a file by itself.
Include a selection of it in the "head" section of your document.
Make calls to the JS functions from EHs in your page.

All your "fake" addresses shall be changed to correct addresses when the user selects functions from your site - and not before. And 'bots mining browser cache just get the fake stuff!

This works better than any "encryption" foolishness ever thought of working. Establish a "real" fake email address and you can verify my claim.

Analysis

List out the HTML source, and the JavaScript (JS) to follow along.

First note my three fake references in the HTML...

http://yahoo.com/ron853211/ link
ron853211@yahoo.com PayPal business ID
mailto:ron853211@yahoo.com mail address

And notice how the JS changes all of them to the real values of...

http://members.aol.com/paypalhelper/ link
paypalhelper@aol.com PayPal business ID
mailto:paypalhelper@aol.com mail address

And notice the three JS functions that perform the conversion...

FixLink - fixes the link reference.
FixBusi - fixes the PayPal business ID.
FixMail - fixes any email references.

To "fix" a link, business ID or email address, include the appropriate call in an Event Handler of the affected item. Notice how this is done in the HTML.

Now, "ron853211" is a valid email reference, and is used to measure effectiveness. Any hits I get there come from mining operations on my site.

In the JS the global data divides my real path names into several parts. The reason for this is so that the real string does not exist in one place - in a single string that can be read by programs.

Remember, this does not slow people down very much, but it stops programs reading pages on the internet from getting valid link and email addresses - it stops them cold!

Contact me concerning this article at email. Mention "spamgard" in your note.

Individual help starting at $25.00 for simple JS solutions.