PhotoPost Photo Gallery Sales PhotoPost Sales Toll Free Phone Number
Mon-Fri 9am-4pm EST
  PhotoPost Photo Sharing Photo Gallery    Visualize community tm
| | | | | | | | |

Go Back   PhotoPost Community > General Forums > General Discussion

General Discussion General use discussion forum for PhotoPost products.

Reply
 
Thread Tools Rate Thread Display Modes
Old August 3rd, 2005, 06:48 AM   #1
bplinson
Member
Verified Customer
 
bplinson's Avatar
 
Join Date: Nov 2004
Posts: 100
Another way to bypass "on-the-fly image protection"

I enabled "on-the-fly image protection" yesterday and I have already had a user figure out out to bypass the security feature.

What they have pointed out to me is that by right clicking on the thumbnail they can get the URL for the photo which ends with for example:

photopost/data/500/thumbs/xxxxx.jpg

Then by changing the thunbs directory to medium they now have the medium size URL (without watermark). Example:

photopost/data/500/medium/xxxxx.jpg

Finally by removing the directory before the image file name they can view the photo or link it to anywhere on the Internet. Example:

photopost/data/500/xxxxx.jpg

So in all actually what is called Watermark protection really is not at all.

I am using an .htaccess file to protect the images from my gallery from being linked to any other websites other than mine. I had removed the .htaccess fiel after enabling the "on-the-fly image protection" but it looks like I will have to keep it in place to stop people from linking directly to the images fromother website.

Here is the .htaccess file entries I am using. Anyone here can modify it for use on their website. I placed the file in the root photopost directory and also the data directory for good measure.

___________________________________________________________

RewriteEngine on
RewriteCond %{HTTP_REFERER} !^$
RewriteCond %{HTTP_REFERER} !^http(s)?://(www\.)?xlforum.net.*$ [NC]
RewriteCond %{HTTP_REFERER} !^http(s)?://(www\.)?v2-forum.com.*$ [NC]
RewriteCond %{HTTP_REFERER} !^http(s)?://(www\.)?linson.us.*$ [NC]
RewriteRule ^.+\.(jpg|jpeg|png|gif|bmp)$ - [NC,F,L]

___________________________________________________________

BTW - I would love to be able to allow anyone to hotlink to my gallery photos but I want the watermark there. If anyone has any idea on how I can ge this to happen please let me know.

Last edited by bplinson; August 3rd, 2005 at 06:53 AM.
bplinson is offline   Reply With Quote
Old August 3rd, 2005, 10:06 AM   #2
Chuck S
Photopost Developer
Verified Customer
 
Chuck S's Avatar
 
Join Date: Jun 2002
Location: Abingdon,MD
Posts: 75,328
You need to do a couple things. Use IPS and move your image directory below the webroot for large images

Next enable right click disable.

Third in your head tag section place this meta tag to disable the image toolbar

<meta http-equiv="imagetoolbar" content="no" />

If the image toolbar is off and right click is disable there is no way to click a darn thing and if the large images are below the webroot no one can get them
__________________
Photopost Developer and Support Engineer

Please do not PM me for support or sales questions. Thank you for your understanding.
Chuck S is offline   Reply With Quote
Old August 3rd, 2005, 11:20 AM   #3
bplinson
Member
Verified Customer
 
bplinson's Avatar
 
Join Date: Nov 2004
Posts: 100
Thanks for the input. Are these instructions anywhere in any documentation? Seems that with the way it is now many users of Photopost may have a false sense of security.
bplinson is offline   Reply With Quote
Old August 3rd, 2005, 12:05 PM   #4
Chuck S
Photopost Developer
Verified Customer
 
Chuck S's Avatar
 
Join Date: Jun 2002
Location: Abingdon,MD
Posts: 75,328
Well disable right click is right in the options and the ips instructions explain to place images below the webroot in ips settings for maximum security

The IE imagetoolbar is just a set peive of mine LOL I tell people to turn that off every chance I get
__________________
Photopost Developer and Support Engineer

Please do not PM me for support or sales questions. Thank you for your understanding.
Chuck S is offline   Reply With Quote
Old April 17th, 2007, 04:38 AM   #5
pepito69
Member
 
Join Date: Mar 2007
Posts: 53
Hello,
In which file i have to set this, and how to know the right path to change it from the admin panel?

Thanx
pepito69 is offline   Reply With Quote
Old April 17th, 2007, 08:04 AM   #6
Chuck S
Photopost Developer
Verified Customer
 
Chuck S's Avatar
 
Join Date: Jun 2002
Location: Abingdon,MD
Posts: 75,328
what are you referring to specifically
__________________
Photopost Developer and Support Engineer

Please do not PM me for support or sales questions. Thank you for your understanding.
Chuck S is offline   Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT -5. The time now is 11:17 AM.

Powered by vBulletin® Version 3.8.1
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.