[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] bandwidth stealing
- Subject: Re: [cobalt-security] bandwidth stealing
- From: Larry Smith <lesmith@xxxxxxxxx>
- Date: Sun, 6 Jul 2003 17:36:55 -0500
- Organization: ECSIS.NET
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
On Sunday 06 July 2003 10:54, Dave's List Addy wrote:
> On 7/6/03 5:55 AM, "Jonathan Michaelson" wrote:
> >> does anybody know a way to preffent illegal downloads.
> >> a client of mine has downloads on his site
> >> the last days hes getting bombed by a iprange lating America
> >> this range is downloading avery second the programm.
> >> i can blok the iprange no problem.
> >>
> >> But is there a way to put a filter on downloads
> >> cq a way that a file only can be downloaded by a link from his site.
>
> This is a common problem in the adult industry. They seem to have worked
> out a method, not sure what it is, but there is a site called
> gof**kyourself.com which is a message board. They discuss this stuff all
> the time. Replace the 2 ** with "uc".
>
> No we aren't an adult operator, but have done some work for those in the
> business. We learned a lot from that site.
Here is a "short-cut" form that goes in .htaccess and will "require" that the
file (extension) be referenced from a "local" http call to work/be
downloaded. This example is for exe, png, gif, jpg (mostly graphics) but
should be able to be modified for just about any extension (.zip, .gz, etc)
SetEnvIfNoCase Referer "yourdomainname.here" local_ref=1
<FilesMatch ".(exe|png|gif|jpg)">
Order Allow,Deny
Allow from env=local_ref
</FilesMatch>
--
Larry Smith
SysAd ECSIS.NET
sysad@xxxxxxxxx(Office)