Quote:
|
Originally Posted by TenTonJim
I found a site hotlinking to a firefox button... I emailed them asking them to just copy it and upload it to their own server but they never responded. I noticed in their HTML that they were not explicitly defining the height and width of the image... so I renamed the firefox button image and replaced it with this... it totally blew out their site and got some free advertising for what it was worth anyway... it took about 3 days before they took it down :)
Here is the image...
http://tentonweb.com/btn/takebacktheweb128x49.gif
the original is the little firefox button on the left at http://tentonweb.com/ |
That rocks TenTonJim!
As for the disable right-click scripts: waste of time. I don't know, maybe a lot of people don't realize it, but a lot of browsers allow you to simply drag the image to a location on your hard drive. No right-click required. Or you could take a screenshot and crop out the rest. Whatever. If I want your image, I can certainly get it.
As for .htaccess... it's non-existant here; this person is using IIS.
The person who mentioned storing images as a BLOB is on the right track for the prevention of hotlinking.
I think this is the move:
Store all your images in a location on the server which is not accessible via the web. On your site, establish a Session on every page. Then, Use something like this in the img tags:
Code:
[img]/img_check.asp?image-in-query-string[/img]
in img_check.asp:
Code:
(pseudocode)
(send content-type header: image/jpeg) or whatever
if (there's no session on my server)
spit out binary image data for your 404.jpeg or stop-ripping-me-off.jpg
else
spit out binary image data for /dir-not-web-accessible/images/(image-in-query-string)
end if
(/pseudocode)