There are many ways to decode secret messages hidden in web site headers. One way is to use a reverse DNS lookup. Reverse DNS lookup can be used to determine the source of a website’s IP address, which can then be used to determine the location of the website’s content. To use a reverse DNS lookup, you will need to create an account on a web site and enter your desired website’s URL into the “URL” field. Then, click on the “Search” button and type in your desired website’s IP address. The results of your search will show you all websites that have matching IP addresses. Once you have found the desired website, you can click on its “Link” button and see its full URL. This link will take you to a page that contains information about that website, such as its description, images, and contact information. You can also access this information by using a search engine or by visiting the website directly.


What Are You Talking About?

The thing you probably don’t realize is that behind the scenes, your web browser sends a request to the web server using the HTTP protocol, which is nothing more than a pre-defined set of commands in text format so the browser and web server can communicate.

…but that’s really boring. Which is why the geeks that run various web sites decided to hide messages in those headers just to see if anybody would notice. And some of them are rather fun.

How to See the Hidden Headers

There’s a number of ways to access these headers, the easiest for real geeks is to pop open the command prompt and use the curl utility, available on Linux, Mac OS X, or even Windows—if you don’t mind downloading an additional utility.

The other way to view them is with the Live HTTP Headers add-on for Firefox. 

If you are using the curl method, you can simply type in the following command (that’s a dash and capital i, not an L)

For instance, if you type in curl –I slashdot.org, you’ll see that they embed random quotes from Futurama into the headers:

The blogging platform WordPress uses the header for a useful purpose—they recommend contacting them about a job if you’ve been able to locate the headers:

My buddy Ross over at SimpleHelp.net expresses his music taste in his header… by now I’m sure you can figure out the command.

 

Over at the Online Tech Tips site, they’ve got a very important tip for you:

The CybernetNews blog tells us that you should tape your thumbs to your hands. I mean, everyone is doing it!

Mattias Geniar wants everybody to know who rocks. Turns out, it’s him!

The Tux Games site is using subliminal advertising. BUY MORE GAMES!

Add a Hidden Message To Your Own Web Site

For those of you rocking a blog running on an Apache web server, and using a .htaccess file, you can actually add your own secret hidden message to your own HTTP headers.

Just open up your .htaccess file, and add the following line (near the beginning for best effect).

You can change whatever is after the X- to anything you want, like X-Yay or X-SecretStuff, and you can also put whatever message you want between the quotes—though I would keep it nice and short.

Added Bonus: Pull a Random Futurama Quote from Slashdot

So now we’ve figured out how to see the quotes—with a little more command-line magic you can make a script that pulls a random quote from the Slashdot servers. Yes, this script is pretty useless, but it’s fun!

There’s lots of other sites with hidden messages in the headers…