Posted by Marek Kilimajer on 03/20/05 01:14

Dotan Cohen wrote:
> On Sun, 20 Mar 2005 09:38:29 +1100, dan rossi <daniel@electroteque.org> wrote:
>
>>>Hmm its the exact setup with how the video filenames are generated in
>>>the player to prevent hotlinking. I guess I am on my own, my client
>>>has very paranoid customers as they have to pay for the bandwidth.
>>>Lets see how I go. But theoretically we must assume these people dont
>>>have php.
>>
>>It looks like we may go with a tokenizer url system, but it means the
>>customers will need php oh well.
>>
>
>
> On the referring site have an image that is hosted on YOUR domain. Set
> a cookie when the user's browser requests the image. Even a 1x1 gif in the
> corner will do: you just need it to come from your domain. Then
> validate against that cookie.

The image can be hotlinked too ;)

• Next in thread: Re: [PHP] Referer checking is able to be referer spoofed
• Prev in thread: Re: [PHP] Referer checking is able to be referer spoofed
• Next in forum: WORK WITH PHP FILES REMOTELY WITH NotePad ? YES/NO ?
• Prev in forum: Re: [PHP] Referer checking is able to be referer spoofed
• Thread view: Referer checking is able to be referer spoofed

[Reply to this message]