I'm studying for the A+ Fundamentals exam and have decided that a great way to to remember it is to explain it here and have it as a post. So I had a question asking me about a scenario where I encounter a users computer where the browser won't open an application.
There are multiple choices of what to pick for why this is the case, but in my particular case, I was curious why one of the options to pick from wasn't applicable as it seemed very applicable. So you have to pick three of the four available multiple choice questions: What should you check, is the browser approved for that browser and version, is the script blocker enabled, is the browser version the most recent, is client side scripting enabled?
Now I was using a website that does practice tests, and I had it set to let me know what the answer was and if I got it right. It told me no because I had picked Client Side Scripting. But I was having trouble understanding why Client Side Scripting wasn't an answer.
My instructor explained at first that its not as common anymore, did some research and realized it used JavaScript and we still use JavaScript quite widely. JavaScript is a computer language that allows you to write applications--don't quote me because apparently there are scripting languages which JavaScript is, and they are not the same as languages you would write a program like Photoshop or iTunes with. But for all I know, Facebook probably uses it. However, to help me understand this, my instructor guided me to an old game website called Cookie Clicker, or https://orteil.dashnet.org/cookieclicker/.
We right-clicked on the cookie and selected Inspect, which brought up a window in Google Chrome, showing all of the code that makes up the site. Something I didn't know was that not everything was in one language. A bunch of things were not scripts, but ever so often, there was a line that started with the word 'script', and there would be a dropdown arrow, that when you click it a bunch more code would appear and this was the script. And these were in the JavaScript language.
Anyway, he used this to explain that this code was an example of Client Side Scripting, it wasn't encrypted and the scripting was accessible on my end. He explained that you don't want applications to be done in Client Side Scripting because then people could just click inspect and go through the code and manipulate the code and make it do all sorts of things, and it wouldn't be secure--because the scripting is being done on the clients end on the computer itself rather than on a server somewhere online before it's served to the user.
It's also good to know that Java is an interpreted language but JavaScript, despite being tricky because it has script in the title, it's actually a Markup Language such as XML, HTML, etc. So JavaScript runs client side as a Markup language online, so it runs scripts through HTML. JavaScript runs through HTML, and there are script injections throughout, in JavaScript. And the purpose of these particular scripts is that they do calculations client side of the server vs the client when on the internet, and those calculations will produce more HTML for the web page.
This has been Truncat3d 00000000111100010100110______________end of line
No comments:
Post a Comment