Posted by Sanders Kaufman on 12/01/06 03:32

>> I have a website where I host guitar lessons. I force people to register in
>> order to listen to audio. But I don't think I am using a good method for
>> protecting the files and preventing people from reverse engineering to
>> figure out the link.


How about something like -
"http://www.blahblahblah.net/membersonly.php?Lesson1.mp3"

Then, if they're logged in, copy the MP3 from an off-web directory into
a temporary unique filename.
When the session ends, delete the uniquely named mp3.

If someone gets that filename, they'll only get a taste of it before the
real user ends their session and the file disappears.

Of course, this idea isn't much good if you don't have a lot of
directory space - because like if all of your users want lesson one at
the same time - a copy will be made for each and every user.

Even then a 10MB MP3 accessed by 100 users at the same time will only be
one GB... and you'll get it back when they're done.

• Next in forum: Arrays: $SomeArray{0} vs. $SomeArray[0]
• Prev in forum: Re: xpath XML and PHP4
• Thread view: Re: Protecting mp3 files on website?

[Reply to this message]