Uri Raz wrote:
Problem with that solution is that many surfers block the referrer field using a proxy or a firewall, including some surfers who browsemy site and legitimately expect the graphics to come up.
As Joshua already mentioned, this is not a problem as this is a small fraction of the users of the website that is stealing your images.
My idea is to have apache remember which IP requested for a page (a file with an appropriate extension / MIME type, e.g. HTML) in the last X seconds and allow only those who did get graphics files.
That doesn't solve your problem, because people will just add a small <img src='http://www.yoursite.com/' width='1' height='1' />in the top-right corner of their website, and your Apache will think everyone has visited your site when in fact they are visited the thief's.
I've been thinking for almost 10 years now that HTTP is really dumb because it has problems like this one. I always thought it would make a lot more sense to transfer some or all images (and CSS and JS) within the same request as the containing HTML page. Then your problem would go away because you could make it impossible to request just the image, but still make it possible for people to view the image when they visit your site.
Timwi ********************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. ********************************************************************** --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx