 |
|
|
|
|
|
|
|
|
|
|
2005-08-18, 08:49 AM
|
#1 |
|
Shut up brain, or I'll stab you with a Q-tip!
Join Date: Jun 2005
Location: Austria
Posts: 118
 |
yes.. when hashing the timestamp it will be a problem.. (encrypting with RSA would be a good idea for that)
what I do is that I have set a time-offset (right now a day) that gets accepted.. just check if the timestamp is inbetween a certain time-span when leaving the seconds away from the timestamp it should not be a problem since one page loads the dynamic pic right away when being loaded --> so no delay (or very little) dynamic IPs are not a problem.. since the IP will always be the same when online.. it does not jump around during one online session.. dynamic proxies could be a problem --> IP does change but I have not read up on that yet
__________________
Please Re-Read The Rules For Sig Files |
|
|
|
2005-08-18, 08:55 AM
|
#2 |
|
Just because I don't care doesn't mean I don't understand!
Join Date: May 2005
Posts: 96
|
OK, but I still don't know how you can check if the timestamp is within a time-offset if you can't unencrypt the original timestamp to check it?
Anyway you seem to have a good idea of what you want to achieve. Good luck with your project. |
|
|
|
|
2005-08-19, 03:14 AM
|
#3 |
|
Nobody gets into heaven without a glowstick
Join Date: Jun 2004
Location: The Great Northwest
Posts: 422
|
Ok guys, here's what I came up with (thanks cd34):
---------------------------------------------------------------------- RewriteEngine on # leave this line in allow empty referrers, remove to disallow empty referrers RewriteCond %{HTTP_REFERER} !^$ [NC] RewriteCond %{HTTP_REFERER} !^http://(.*@)?([a-z0-9-]+\.)*oldmanporn\.com(:[0-9]+)?(/.*)?$ [NC] RewriteCond %{HTTP_REFERER} !^http://(.*@)?1\.2\.3\.4(:[0-9]+)?(/.*)?$ RewriteRule ^.+\.(jpg|jpeg|gif)$ http://www.sexwitch.com/hotlink.jpg AuthUserFile /dev/nul AuthGroupFile /dev/nul ErrorDocument 505 http://www.oldmenfucking.com/ ErrorDocument 404 http://www.oldmenfucking.com/ ---------------------------------------------------------------- This replaces any hotlinked image with an image; hotlink.jpg Here is a link to fusker with my domains and hotlinked images: http://fusker.lewww.com/index.php?query=oldmanporn.com See for yourself how well it is working! Awesome. One question I have, I left out this bit of code in my .htaccess [NC,F,L] is that important? Thanks for all your help! I've been getting hammered by fusker! |
|
|
|
|
2005-08-19, 03:49 AM
|
#4 |
|
I'm the only guy in the world who has to wake up to have a nightmare
Join Date: Feb 2004
Location: London, United Kingdom
Posts: 1,895
|
Feel free to take that pic down btw
 |
|
|
|
|
2005-08-19, 04:47 AM
|
#5 |
|
Just because I don't care doesn't mean I don't understand!
Join Date: May 2005
Posts: 96
|
I removed my example of how to defeat .htaccess
( it also hotlinked the oldmanporn btw ). I'm happy that .htaccess seems to stop Fusker for you all. ;-) |
|
|
|
|
2005-08-20, 06:04 AM
|
#6 | |
|
Nobody gets into heaven without a glowstick
Join Date: Jun 2004
Location: The Great Northwest
Posts: 422
|
Quote:
|
|
|
|
|
|
2005-08-19, 06:37 AM
|
#7 |
|
I'm the only guy in the world who has to wake up to have a nightmare
Join Date: Feb 2004
Location: London, United Kingdom
Posts: 1,895
|
Thanks wankmaster,
Interesting stuff for sure  |
|
|
|
|
2005-08-19, 09:17 AM
|
#8 |
|
a.k.a. Sparky
Join Date: Sep 2004
Location: West Palm Beach, FL, USA
Posts: 2,396
|
The 1\.2\.3\.4 is supposed to be replaced with your IP address.
Any referrer protection is basically useless in a number of conditions, and there are ways around it. However, the above does seem to handle about 99% of the cases.
__________________
SnapReplay.com a different way to share photos - iPhone & Android |
|
|
|
|
2005-08-19, 02:05 PM
|
#9 |
|
Registered User
Join Date: Apr 2005
Location: Central Jersey! If I was rich and powerful I would dress as my avatar does.
Posts: 1,448
 |
Im using the one above, if someone gets around it then well to be honest here. I just hate fighting shit like this but Ill deal with it when I see it. Strange thing when i go to test my HL it does say that it works, but im looking to see if my current image is working also, anyway to figure out that? The testing sites jus give you an x if its working.
http://www.camhostlist.com/images/nohotlink.jpg |
|
|
|
|
2005-08-19, 08:26 PM
|
#10 |
|
Rock stars ... is there anything they don't know?
Join Date: Aug 2005
Location: Las Vegas, NV
Posts: 10
|
I don't use htaccess because it is a resource whore. You can use SetEnvIfNoCase instead. Plus you can get real fancy by using symbolic links and random strings for your content that get changed via a crontab every X number of minutes/hours.
Cheers |nursing |
|
|
|
|
2005-08-20, 06:27 AM
|
#11 |
|
Just because I don't care doesn't mean I don't understand!
Join Date: May 2005
Posts: 96
|
For all practical purposes the issue is solved by .htaccess
I don't think it's worth worrying about. Just set up your .htaccess similar to above recommendations if you're bothered about hotlinking. Apache docs advise against .htaccess for performance reasons, tho threads on other boards say that with a well loaded modern server this isn't likely to be the bottleneck. Unless you have REAL perfomance issues, I think .htaccess is fine. |
|
|
|
|
2005-08-20, 08:35 AM
|
#12 |
|
Registered User
Join Date: Apr 2005
Location: Central Jersey! If I was rich and powerful I would dress as my avatar does.
Posts: 1,448
|
Hum I wonder if this could be the reason for some slow page loads on my site. I just went over to a new host and have asked them to look at their server. First day I left the file they provided me with, then i went and placed this hotlink code. Cant say 100% for sure if it changed before or after, but it has been annoying the hell out of me.
|
|
|
|
 |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
Hybrid Mode
