[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-users] Restricting Access
- Subject: RE: [cobalt-users] Restricting Access
- From: BSmith@xxxxxxxxxxx
- Date: Fri Sep 13 08:02:01 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
-----Original Message-----
From: Bob G7
Subject: [cobalt-users] Restricting Access
This may sound offbeat, so here goes.
Anyways, I would like to be able to restrict this image directory so that
the images can only be seen by the message board it's intended for. If
someone places the link into another message board or webpage they won't get
anything.
Bob G.
_____________________________________
Here you go ... take a look at this.
How can I prevent people from "stealing" the images from my web site?
The goal here is to prevent people from inclining your images directly from
their web site, but accessing them only if they appear inline in your pages.
This can be accomplished with a combination of SetEnvIf and the Deny and
Allow directives. However, it is important to understand that any access
restriction based on the REFERER header is intrinsically problematic due to
the fact that browsers can send an incorrect REFERER, either because they
want to circumvent your restriction or simply because they don't send the
right thing (or anything at all).
The following configuration will produce the desired effect if the browser
passes correct REFERER headers.
SetEnvIf REFERER "www\.mydomain\.com" linked_from_here
SetEnvIf REFERER "^$" linked_from_here
<Directory /www/images>
Order deny,allow
Deny from all
Allow from env=linked_from_here
</Directory>
Further examples can be found in the Environment Variables documentation.
Taken from: http://httpd.apache.org/docs/misc/FAQ.html#image-theft
Thanks,
Brian Smith
CCNA, NCSA
Network Support Engineer
SOLUSERVE
www.solunet.com
1571 Robert J. Conlan Blvd., Suite 110
Palm Bay, FL 32905
(888)449-5766
fax: (321)-676-1287