Yeah, those two people would be blocked. Wouldn't bother anyone else. You can do it but it's not effective against people smart enough to supply a fake referer. Often you'll just create more problems for yourself than you'll really see benefit. It is useful sometimes though.The only remedy agaonst remote linking is to embed some kind of expiration in the link that accesses the document.Wouldn't a check of the REFERER field be enough to disable most remote links? (I know it is easily forged.)Normal users also use browsers which choose not to send it all. If you don't mind losing X% of your audience because they like to use such a browser, you're all set... :-v
I'd do it at the webserver level though and not with PHP. -- Michael McGlothlin Southwest Plumbing Supply
<<attachment: smime.p7s>>
