Article Diary - General Knowledge Digest

Prevent hotlinking with a .htaccess file

Hotlinking refers to linking directly to non-html objects on other servers, such as images, movie files etc. This can greatly impact bandwidth usage, and in some cases GPUs if you are on the (gs) Grid-Service. You can prevent these requests on your server using a .htaccess file.

If you already have an .htaccess file simply add one of these two snippets of code to your existing file, or create a new plain text document with this code and upload it to your domains directory, or a particular sub directory to localize the effect to just one of your sites, or section of one of these sites:

To simply stop hotlinking you can add the following to your .htaccess file:

Replace mt-example.com on line 3 with your own domain name.

RewriteEngine on
RewriteCond %{HTTP_REFERER} !^$
RewriteCond %{HTTP_REFERER} !^http://(www.)?mt-example.com/.*$ [NC]
RewriteRule .(gif|jpg|jpeg|bmp|zip|rar|mp3|flv|swf|xml|php|png|css|pdf)$ - [F]

To serve alternate content when hotlinking is detected:

You can set up your .htaccess file to actually display different content when hotlinking is attempted. This is more commonly done with images suggesting your displeasure of this activity, such as serving up an "Angry Man" image in place of the hotlinked one. Once again replace mt-example.com on lines 3 and 4 with your own domain name.

RewriteEngine on
RewriteCond %{HTTP_REFERER} !^$
RewriteCond %{HTTP_REFERER} !^http://(www.)?mt-example.com/.*$ [NC]
RewriteRule .(gif|jpg)$ http://www.mt-example.com/angryman.gif [R,L]
3.8 (5)
Article Rating (5 Votes)
Rate this article
Attached Files
There are no attachments for this article.
Comments (1)
Comment by Rahul Ghatotkach on Thu, Oct 8th, 2009 at 12:55 PM
Its is very helping article here about Preventing hotlinking with a .htaccess file. Keep it up. Its is nice one.
Name
Email
Security Code Security Code
Related Articles RSS Feed
Open Source Web Analytics Framework
Viewed 971 times since Sat, Jan 30, 2010
Before and After Picture - jQuery Plugin
Viewed 1410 times since Tue, Dec 29, 2009
Geo-location Mapping With Google Maps API & PHP
Viewed 1456 times since Mon, Apr 4, 2011
Meerkat - jQuery Plugin for Promotional Content
Viewed 1142 times since Tue, Dec 29, 2009
Google Skipfish - Web Application Security Scanner
Viewed 1216 times since Mon, Mar 22, 2010
JavaScript Tree Menu Component - jsTree Menu
Viewed 1775 times since Sat, Jan 9, 2010
How to prevent access to a specific file on server using htaccess?
Viewed 1105 times since Sun, Mar 14, 2010
Use PHP Functions In JavaScript with PHP.JS Library
Viewed 972 times since Fri, Jan 8, 2010
Web Usability Testing Tool - Clixpy
Viewed 1511 times since Sat, Jan 9, 2010