Forum Moderators: phranque
Every time I think I have it right (and even test it as best I can), I see code 200 responses an hour later where this person is still linking to my pics.
I put the following in my images/.htaccess: where "bandwidththief" is the online journal account they are using to steal my pics.
RewriteEngine on
RewriteCond %{HTTP_REFERER} ^$ [NC,OR]
RewriteCond %{HTTP_REFERER} bandwidththief/.*$ [NC]
RewriteRule .*\.(jpg¦jpeg¦gif¦png¦bmp)$ - [F,R]
I thought this would work, and with a URL referer that starts with "bandwidththief" it does. But about two hours after I did this, I saw a string of additional code 200 responses where this person was hotlinking to more pics. All of those requests had a referer of [example.com...]
I don't want to deny the entire online journal site because some of my friends use it. Any ideas on why this isn't working the way I am thinking that it should?
TIA
[edited by: DaveAtIFG at 9:59 pm (utc) on Dec. 10, 2002]
[edited by: Vael27 at 10:26 pm (utc) on Dec. 10, 2002]
I'm confident that one of our resident mod_rewrite gurus will be along soon to help you sort this out.
someone correct me if im wrong.
The .htaccess file in the sub-directory works fine if the referer is blank. I tried that last night around 10p several times, and got 403 errors every time. It's just not working if "bandwidththief" isn't at the beginning of the referer url.
Welcome to WebmasterWorld [webmasterworld.com]!
Delete the slash off the end of the "bandwidththief" condition, and leave it without an end anchor:
RewriteEngine on
RewriteCond %{HTTP_REFERER} ^http://www.example\.com/users/bandwidththief [NC]
RewriteRule .*\.(jpg¦jpeg¦gif¦png¦bmp)$ - [F]
You really can't block blank referrers, because that will block legitimate users who connect through proxy servers or use Norton Internet Security.
Also, [F,R] is redundant, so you can omit the "R".
If this doesn't work, please copy one of the lines from your server log, and post it so we can see the entire referer string.
Jim
