The only reason for preventing ppl to access files would be theft of bandwith. If you worry about ppl being able to get the images then you shouldn't publish them at all. You can't protect them from being dumped with printscreen.
Another solution would be to change the the path at random and copy all images to the new location while you copy a special image on the old location. You have no idea how fast ppl will stop using your pics if they have the text "stolen from ..." where you put your domainname on the dots.
This would require you to have the path to the file in your code.
HTTP REFERER is not always set correctly so I wouldn't trust that to much.
B.
At 09:13 21-03-2003 +0100, lasse wrote:
sure you can. And i don't mind you disagreeing with me either =)
Although, if the solution/site is meant to be used by other than people who know something about the webserver i don't think it's a good solution.
I can imagine writing something that reads the htaccess-file and edits it... but i don't like the possible securtyissues with that. Besides... if you render a page with a selectbox from mysqltables and another with images and let the user match them together, it's idiotproof =)
If you have a php(or whatever)-file wich sole purpouse is to check users rights and render images it can also always check if you have the right cookies. If you've been to the right previous page to see that picture, if not redirect to '/'; Do you get my point?
I still believe that the blob i my saviour... (despite the obvious loss of performance)
On Thu, 20 Mar 2003, B. van Ouwerkerk wrote:
> You can use other ways to protect your images from linking by others. Like > with Apache and htaccess.. > > I don't agree with you on your opinion that it's easier to code. If you > insert a link into your database all you have to do is retrieve it and push > the link to the browser. > > > > B.
--------------------------------------------------------------------- Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive)
To request this thread, e-mail <[EMAIL PROTECTED]> To unsubscribe, e-mail <[EMAIL PROTECTED]> Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
