httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Robert Andersson" <>
Subject Re: [users@httpd] preventing image theft
Date Thu, 03 Jun 2004 17:27:10 GMT
Eugene Lee wrote:
> Almost every article out there that deals with image theft uses the
> Referer header.  The main problem with this method is that the Referer
> information may be stripped automatically on users' machines that have
> some kind of draconian 3rd-party firewall product.  Any suggestions on
> how to deal with users with missing Referer headers are appreciated.

Only deny when the request includes a Referer header, and when it is wrong.
Allow otherwise. That won't stop all, but most, which should be your goal.

Robert Andersson

The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message