when using SC_ALERT() the message (Chrome) shows server IP/port. This creates serious security issue. I’m testing it locally (at the moment) but I think this same happens on production server.
I wonder if there is any way to prevent this from showing up. It seems like this is generated by Google Chrome only but nevertheless this should be somehow disabled.
[ATTACH=CONFIG]n68715[/ATTACH]
I don’t know if you can change this, because this comes from the browser, not from SC. You can open google.com open Web Console, and write alert(‘test’) and you will see the same title there (changin IP part of course). But don’t know why this is serious security issue.
As Giu say, this is not ScriptCase side. The native javascript alert will show the website name in the title by default. Cause you do not have a name, then the ip address is shown. In fact, this is a security/anti-phishing practice, because the user can confirm where the alert comes from.
This dialog only displays the hostname (e.g. http://hostname/index.php), and because you’re accessing the webpage though the IP address (http://127.0.0.1:8081/index.php), that is what it’ll display.
You can’t change that, because sc_alert uses the native alert function provided by the browser (although you can overwrite the alert function, you can’t modify THIS dialog/box).
But if you really want to hide it (it’s painful and it’s not really worth, unless you want an elegant dialog), you can overwrite the default alert function and instead of displaying the browser’s native alert dialog, you can use one dialog plugin, like http://smoke-js.com/ or http://jqueryui.com/dialog/
Just want to add that it is really easy to know someone’s IP. It is easy to tell for example the IP from Google or Facebook.
That’s one of the basis of DDOS attack for example.
You can protect your network in a lot of different ways too.