I like this apache solution, but if i put SetEnvIf Referer "^http://www.yourdomain.com" local_referal Then i can access the file putting this path in the URL: http://www.yourdomain.com/xyz/scriptfile.php And i don´t want the script to be access by the url. That is the main problem. Thanks On Mon, Jan 19, 2009 at 1:38 PM, Richard Heyes <richard@xxxxxxx> wrote: > > ... > > This may be of some help. It's from the Apache website and only allows > access if the Referer header is sent by the browser and is > www.yourdomain.com, ie. Direct access is not permitted: > > ########################################### > SetEnvIf Referer "^http://www.yourdomain.com" local_referal > > Order Deny,Allow > Deny from all > Allow from env=local_referal > ########################################### > > -- > Richard Heyes > > HTML5 Graphing for Firefox, Chrome, Opera and Safari: > http://www.rgraph.org (Updated January 17th) >