httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Arne Heizmann <Arne.Heizm...@csr.com>
Subject Re: [users@httpd] Apache improvement suggestion
Date Wed, 11 May 2005 12:18:04 GMT
Uri Raz wrote:
> 
> Problem with that solution is that many surfers block the referrer 
> field using a proxy or a firewall, including some surfers who browse
> my site and legitimately expect the graphics to come up.

As Joshua already mentioned, this is not a problem as this is a small
fraction of the users of the website that is stealing your images.

> My idea is to have apache remember which IP requested for a page (a
> file with an appropriate extension / MIME type, e.g. HTML) in the
> last X seconds and allow only those who did get graphics files.

That doesn't solve your problem, because people will just add a small

	<img src='http://www.yoursite.com/' width='1' height='1' />

in the top-right corner of their website, and your Apache will think 
everyone has visited your site when in fact they are visited the thief's.

I've been thinking for almost 10 years now that HTTP is really dumb 
because it has problems like this one. I always thought it would make a 
lot more sense to transfer some or all images (and CSS and JS) within 
the same request as the containing HTML page. Then your problem would go 
away because you could make it impossible to request just the image, but 
still make it possible for people to view the image when they visit your 
site.

Timwi


**********************************************************************
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the system manager.

**********************************************************************


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message