On 7/27/07, Richard Lynch <ceo@xxxxxxxxx> wrote: > On Thu, July 26, 2007 8:41 am, Eric Butera wrote: > > filenames. Are you trying to protect them from unauthorized viewing? > > If you are trying to protect from unauthorized viewing, they probably > shouldn't be in the webtree at all, as it's not exactly rocket science > to guess that your images are in an images sub-directory, even if you > never show a URL to it... > > You'd still do the same stuff, just put the images outside the webtree > so that the ONLY way to get to them is through your PHP script. > > -- > Some people have a "gift" link here. > Know what I want? > I want you to buy a CD from some indie artist. > http://cdbaby.com/browse/from/lynch > Yeah, I get a buck. So? > > Not everyone has the option to do that. Plus I think it is unintuitive to have things outside of your actual "web site." You can disallow traffic with Apache fairly easily if you're paranoid of such things. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
