Encoding Email for Public Website

Discussion in 'Webmastering & Programming' started by Sayth, Apr 1, 2013.

  1. Sayth

    Sayth Gawd

    Messages:
    618
    Joined:
    Oct 7, 2001
    Hey all,

    Just wondering what your thoughts are. I'm fairly new to web design so I'd like your opinion on encoding email.

    Is www.mailtoencoder.com just as secure as (or more secure than) www.wbwip.com/wbw/emailencoder.html ?

    In the first one, you use javascript to hide your email in the source code, but the email is visible to the user (nice to have for the user), but the other one has you create a link (like the person's name, not their email address) and then using code, on click the browser brings up your email program with the address inputted.

    What would you use? I like the first because the user can copy/paste the email for a web-based email rather than an installed program.

    Thanks!
     
  2. Fort_Major

    Fort_Major Limp Gawd

    Messages:
    425
    Joined:
    Apr 22, 2006
    In the end it doesn't really matter. if bots "really" wants to steal your e-mail they can.

    From my experience, the more mainstream OOB solution you use the higher likelihood that a bot is programmed to a) recognize it and b) use pre-programmed method to circumvent it.

    I generally recommend people to not let let decisions like this affect the accessibility of your website to your end consumer in a negative/annoying manner.

    On a side note, whatever method you do, I also recommend that there is a mailto: method in your hyperlink since these are now (user/Master?) configurable to go to web-mail.

    I know that latest Firefox can be configured to go to web-mail. It would not surprise me if Chrome is the same way or at least tries to make you think Gmail is the only one that it can be done with.
    "most" Tablets/phones should also do this.
     
  3. Sayth

    Sayth Gawd

    Messages:
    618
    Joined:
    Oct 7, 2001
    Great advise. Thanks for replying. I'll just use the www.mailtoencoder.com/ one because it's easier for the clients visiting the site.

    Take care and Happy Easter!
    -S
     
  4. Grentz

    Grentz [H]ard as it Gets

    Messages:
    17,118
    Joined:
    May 5, 2006
    That JS method works well. Plain mailto links are easy and common to harvest, so the JS at least gives some form of defense that is not intrusive to the users
     
  5. Fort_Major

    Fort_Major Limp Gawd

    Messages:
    425
    Joined:
    Apr 22, 2006
    A good JS method should inject mailto: link imho.
     
  6. Grentz

    Grentz [H]ard as it Gets

    Messages:
    17,118
    Joined:
    May 5, 2006
    That is what that one does?
     
  7. Fort_Major

    Fort_Major Limp Gawd

    Messages:
    425
    Joined:
    Apr 22, 2006
    I do not know. I was stating that as a "the hallmark of a good encryptor should do.." I have come across a lot of e-mail encryptors that do not make the link very accessible.
     
  8. Grentz

    Grentz [H]ard as it Gets

    Messages:
    17,118
    Joined:
    May 5, 2006
    Gotcha. Yes this is what the one linked to above does. Essentially it encodes the email in code so you cannot simply scrape the mailto: link (like many bots do), but to the user it uses javascript to reconstruct a valid email in a mailto link form.
     
  9. TCM

    TCM Gawd

    Messages:
    641
    Joined:
    Nov 10, 2011
    And please don't call it encryption. There is no key.

    It's obfuscation.
     
  10. Fort_Major

    Fort_Major Limp Gawd

    Messages:
    425
    Joined:
    Apr 22, 2006
    ^^
    Hah, yeah what he said. Sorry I wasn't feeling pedantic that day(s)
     
  11. Grentz

    Grentz [H]ard as it Gets

    Messages:
    17,118
    Joined:
    May 5, 2006
    Hence using the word encode, not encrypt :)