Welcome Guest Search | Active Topics | Sign In | Register

Essential Objects Product Support Forum » All Products » Support » EO.Webbrowser detected by cloudflare

2 pages: 1 [2]
EO.Webbrowser detected by cloudflare Options
Previous Topic · Next Topic
Vince
Posted: Wednesday, June 26, 2024 6:52:18 AM
Rank: Member
Groups: Member

Joined: 1/29/2024
Posts: 13
Dear Support,
any news about this issue?
Back to top
 
eo_support
Posted: Wednesday, June 26, 2024 11:27:45 AM
Rank: Administration
Groups: Administration

Joined: 5/27/2007
Posts: 24,217
Not yet. We are still working on this.
Back to top
 
Aaron
Posted: Thursday, August 8, 2024 3:53:37 PM
Rank: Newbie
Groups: Member

Joined: 5/1/2019
Posts: 3
Is it possible that they are detecting the EOBrowser using the eoapi variable?

I know there is a way to randomize the variable, but it is still not hard to figure out because the randomized variable still has _VerifyThis and _extInvoke versions. So, if I were going to detect it, I would use the following JavaScript
Code: JavaScript 
var c;for (var b in window) {if (window.hasOwnProperty(b) && b.includes('_extInvoke')) {c = b}};c.substring(0, c.indexOf('_extInvoke'))


That JavaScript will return the randomized name of the eoapi variable. You can then make a call to that object's getVersion() function if you want to help remove possible false positives.

Would it be possible to remove this method from working by also randomizing the _extInvoke and _VerifyThis variable name portions?
Back to top
 
eo_support
Posted: Friday, August 9, 2024 9:59:50 AM
Rank: Administration
Groups: Administration

Joined: 5/27/2007
Posts: 24,217
Hi,

Based on our investigation the root of the issue is not because of eoapi variable. The root of the issue is CloudFlare detects certain features that is only supported by the full blown Chrome browser. It is not possible for us to find out exactly what CloudFlare is looking for directly just by looking at their JavaScript code because all its JavaScript code does is to collect a "fingerprint" of the runtime environment and then send that fingerprint to their server for verification. So the only way is for us to try to turn certain code path on/off on our end and then test it over and over again. Unfortunately we haven't gotten to the bottom of this yet due to the enormous size of the Chromium project.

Thanks!
Back to top
 

2 pages: 1 [2]

You cannot post new topics in this forum.
You cannot reply to topics in this forum.
You cannot delete your posts in this forum.
You cannot edit your posts in this forum.
You cannot create polls in this forum.
You cannot vote in polls in this forum.