[nycbug-talk] direct file access denied via htaccess
Marc Spitzer
mspitzer
Wed Jun 15 18:02:35 EDT 2005
On 6/15/05, Steve Rieger <steve.rieger at tbwachiat.com> wrote:
> hi all am trying (dont even know if this is possible) to prevent anybody
> and all from accessing anhy files via http directly
>
hmm.
one way to raise the bar is to generate the links with javascript on
the client, you can not copy the link with out. Your real problem is
that things are cached on the client so to lift your stuff I do the
following:
1: clear cache on firebird
2: hit your website
3: go through the cache, digital dumpster diving.
marc
ps there may be some neat firebird modules that make this even easier.
marc
> i know the proper syntax for preventing hotlinking
>
>
> # cat .htaccess
> RewriteEngine on
> RewriteCond %{HTTP_REFERER} .
> #RewriteCond %{HTTP_REFERER} !^http://(www\.)?mydomain\.(com?net) [NC]
> RewriteRule \.(gif|jpg|bmp|mid|css)$ - [F,NC]
>
> but say that you know that i have a jpg at
> http://www.mydomain.com/stever/junk/001.jpg
>
> i need to prevent anybody from pasting that into their browser and
> getting that image. the above htaccess file aint working, how can i make
> this happen.
>
>
>
> thanx
>
>
> --
> --
> Steve Rieger
> (212) 804-1131 (Work)
> (646) 335-8915 (Cell)
> chozrim (aim)
>
> _______________________________________________
> % NYC*BUG talk mailing list
> http://lists.nycbug.org/mailman/listinfo/talk
> %Be sure to check out our Jobs and NYCBUG-announce lists
> %We meet the first Wednesday of the month
>
More information about the talk
mailing list