I'm following the tutorial from here. My .htaccess file is in my site's root, and does contain code after that shown above, but the [L] directive should make that irrelevant.
And if you remove the <IfModule mod_rewrite.c>...</IfModule> part, leaving just the directives inside it does it do the same thing? Or do you get an internal server error 500?
RewriteEngine On
RewriteCond %{HTTP_REFERER} !^http://(.+\.)?matthewsvolvosite\.com/ [NC]
RewriteRule .*\.(jpe?g|gif|bmp|png)$ http://www.matthewsvolvosite.com/images/hotlink.gif [L]
I tested that my server was not caching .htaccess by removing a line that redirects with a 301, and when I did it did not redirect the page. I also looked for another .htaccess in /images/ but there is none.
It's going to be something embarrassing, something simple. I know it.
Does anyone have a general idea on how reliable using HTTP_REFERER in this day and age is? I understand you should never rely on it, but for statistical and hotlinking purposes, this would be useful to know.
John Cartwright wrote:Does anyone have a general idea on how reliable using HTTP_REFERER in this day and age is? I understand you should never rely on it, but for statistical and hotlinking purposes, this would be useful to know.
Yeah never rely on it, it's easily forged and can easily be disabled (quite a few of my colleagues browse with referrers turned off). But for stats and hotlinking (non-critical stuff) it's pretty much what you've got to go on.
John Cartwright wrote:Does anyone have a general idea on how reliable using HTTP_REFERER in this day and age is? I understand you should never rely on it, but for statistical and hotlinking purposes, this would be useful to know.
Yeah never rely on it, it's easily forged and can easily be disabled (quite a few of my colleagues browse with referrers turned off). But for stats and hotlinking (non-critical stuff) it's pretty much what you've got to go on.
Yea.. as I've sadly noticed. More specifically in my situation we would be posting ads on various websites. Some of which are more secure with what you are allowed to post. Up to now, I have squeeked through the cracks by having a javascript snippet generate the link whilst passing window.location params, but on sites like craiglist they whitelist their tags and attributes to the max, it's obviously not possible (and with good reason ). Oh well, it was fun while it lasted.