On Thu, Mar 26, 2009 at 2:41 PM, Octavian Râsnita <orasnita@xxxxxxxxx> wrote: > Ok, and what happends if not a browser requests that mp3 file, but a custom > made program that download all the files? > > Octavian > > ----- Original Message ----- From: "Jonathan Zuckerman" > <j.zuckerman@xxxxxxxxx> > To: <users@xxxxxxxxxxxxxxxx> > Sent: Thursday, March 26, 2009 8:06 PM > Subject: Re: How to prevent a site to be grabbed ? > > > Use a one-time pad. Every URL to an mp3 is not an actual resource, > it's a link that is generated when the user indicates a desire to > download the mp3, and the mp3 is then copied from a protected place to > a public place. After that link is accessed one time, a script is run > which outputs the mp3 as a file, then deletes the public mp3 and > invalidates the link. Hashing, cryptography, this is a classic > computer science problem ;) > > On Thu, Mar 26, 2009 at 2:38 AM, Octavian Rasnita <orasnita@xxxxxxxxx> > wrote: Or what happens if the person who requested the one-time-valid URL just uses their browser to save the file to disk. As stated a few dozen times already on this thread: the only way to prevent people from getting things off your server is to give them access to it in the first place. -Brian -- Feel free to contact me using PGP Encryption: Key Id: 0x3AA70848 Available from: http://pgp.mit.edu/ --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|