Quote:
order allow,deny
deny from lewww.com
allow from all
|
nooooooooo
this won't stop hotlinking, and will force every request below this to require reverse dns lookup - and depending on your server and upstream DNS, this could cause quite a performance issue.
What you can do is something like:
RewriteEngine on
RewriteCond %{HTTP_REFERER} usefulidiots [OR]
RewriteCond %{HTTP_REFERER} fusker [OR]
RewriteCond %{HTTP_REFERER} webrats
RewriteRule .* - [F]
That will block the 3 PITA sites.
Alternatively, the reverse would be to allow only the valid domains to hotlink (i.e. your site)
Regrettably, with the blank referrer, most people can bypass the check. Usually during a hotlink attack, I disallow blank referrers until the storm blows over.
In fact, we even wrote a tux-specific rule called lockdown that does that.
