Re: [users@httpd] Apache improvement suggestion

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Uri Raz wrote:

Problem with that solution is that many surfers block the referrer field using a proxy or a firewall, including some surfers who browse
my site and legitimately expect the graphics to come up.

As Joshua already mentioned, this is not a problem as this is a small
fraction of the users of the website that is stealing your images.

My idea is to have apache remember which IP requested for a page (a
file with an appropriate extension / MIME type, e.g. HTML) in the
last X seconds and allow only those who did get graphics files.

That doesn't solve your problem, because people will just add a small

	<img src='http://www.yoursite.com/' width='1' height='1' />

in the top-right corner of their website, and your Apache will think everyone has visited your site when in fact they are visited the thief's.

I've been thinking for almost 10 years now that HTTP is really dumb because it has problems like this one. I always thought it would make a lot more sense to transfer some or all images (and CSS and JS) within the same request as the containing HTML page. Then your problem would go away because you could make it impossible to request just the image, but still make it possible for people to view the image when they visit your site.

Timwi


**********************************************************************
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the system manager.

**********************************************************************


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
  "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx



[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux