httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Richard Hector <>
Subject Re: [users@httpd] Disabling the World to view Images from URL directly
Date Mon, 14 Apr 2003 12:53:30 GMT
On Mon, Apr 14, 2003 at 02:17:46PM +0200, Boyle Owen wrote:
> There isn't any "DoNotDisplayDirectly" directive, if that's what you had
> in mind, so to do this kind of thing you have to do something inventive.
> Remember that all requests look alike to your webserver and that there
> is no difference in principle between a direct request which someone
> types into the browser and the request which comes from a <IMG> tag.

While I'm not in favour of this sort of thing, I like a challenge :-)

My thought is this:

Your web page is delivered by a CGI script, which creates a hash of the
client's IP address and uses it in the URL of the image. This URL also
refers to a CGI, which only delivers the image if the IP address hashes
to the same thing. The first CGI could also save a timestamp somewhere,
so that it will only work once (because the 2nd CGI will delete it) and

It's a nasty thing to do, but I think it would work. I guess a cookie
would do the same thing ...


The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message