Greenguy's Board - View Single Post

cd34 · 2009-03-27, 03:14 PM

They use javascript to create an iframe to load the image remotely. As a result, there is no referrer, and, most anti-hotlinking rules allow the empty referrer. It's not like you couldn't do it with an iframe and meta-refresh or a dozen other ways.

Blocking the non-referral hits could impact real viewers running certain privacy software, but, its a difficult thing to police.

I don't know that there is a better solution without considerable work. The one solution that used to protect against these types of things disappeared years ago, though, it wasn't a simple solution.

2009-03-27, 03:14 PM	#3
cd34 a.k.a. Sparky Join Date: Sep 2004 Location: West Palm Beach, FL, USA Posts: 2,396	They use javascript to create an iframe to load the image remotely. As a result, there is no referrer, and, most anti-hotlinking rules allow the empty referrer. It's not like you couldn't do it with an iframe and meta-refresh or a dozen other ways. Blocking the non-referral hits could impact real viewers running certain privacy software, but, its a difficult thing to police. I don't know that there is a better solution without considerable work. The one solution that used to protect against these types of things disappeared years ago, though, it wasn't a simple solution. __________________ SnapReplay.com a different way to share photos - iPhone & Android