English
Brasil
Dansk
Deutsch
Español
Français
Italiano
Magyar
Nederlands
Polski
Türkçe
Русский
简体中文Announcement
- [2013-04-19] Piwigo 2.5.1
- [2013-04-08] New server for Piwigo.org
- [2013-04-01] Piwigo and Zenphoto to join forces!
- [2013-03-04] Piwigo 2.5
- [2013-02-23] Piwigo 2.5.0RC2
- Forum Index
- » How-To and Troubleshooting
- » Are files protected against access directly with URL?
Post a reply
Topic review (newest first)
- Michael
- 2012-09-12 13:59:17
for securing the files with .htaccess
check post:135239
- plg
- 2012-09-12 13:47:22
With the new multiple size engine of Piwigo 2.4, we can expect a better solution for the future. Read dev team discussion on topic:18648
- K_Erwin
- 2012-09-12 11:27:53
Kalle wrote:
Why are you sure that this work? This does not prevent a browser to show a picture with a known direct link.
Because I did try it, and it works perfectly with Apache web server.
Kalle wrote:
Piwigo does not use php to send a picture to the browser, and the plugin "secure images" is not updated to Piwigo 2.4.3.
This sentence makes no sense. When you enter the picture's url directly in your webbrowser, the webserver is responsible for serving this image, not Piwigo. That's why you have to use some .htaccess or httpd.conf to tell Apache not to serve this directory to web clients. But Grum from Piwigo team already explained that in the first answers of this thread. Maybe you have an understanding problem? You guys nut?
With Microsoft IIS webserver it's another story.
What webserver is your site running on? People complaining here never answer that simple question. I can't believe you are publishing a website without knowing which web server you are using, or are you guys just trolls?
- Kalle
- 2012-09-12 09:02:07
K_Erwin wrote:
As said before this is a web server diective, use something like
RewriteEngine On
RewriteRule ^upload/ - [F,L]
in the main directory .htaccess
Works fine for apache
Why are you sure that this work? This does not prevent a browser to show a picture with a known direct link.
Piwigo does not use php to send a picture to the browser, and the plugin "secure images" is not updated to Piwigo 2.4.3.
- K_Erwin
- 2012-09-12 08:34:09
If you put it inside /galleries it won't work!
Do you use Apache? Is it configured to read .htaccess? Else put the lines in httpd.conf
It works perfectly.
- JJF
- 2012-09-12 04:14:49
Hi,
So i put into my galleries directory an .htaccess:
Code:
RewriteEngine On RewriteRule ^galleries/ - [F,L]
made no difference. Also put in the root of my web site. Still made no difference. Any ideas?
- K_Erwin
- 2012-09-11 22:07:09
As said before this is a web server diective, use something like
RewriteEngine On
RewriteRule ^upload/ - [F,L]
in the main directory .htaccess
Works fine for apache
- Kalle
- 2012-09-07 19:17:47
photo_friend wrote:
I would be glad, if a solution comes soon.
+1
- photo_friend
- 2012-05-10 07:38:20
I have investigating a little bit more about this issue. Wherever you use a public PC or a public network, it is really easy to have unauthorized access to all of you photo. You just have to look for the URL calls in the network proxy or browser history and you see the direct link to each photo that the user has been open.
This issue come up for me, because the piwigo facebook plugin publish the photo URL. Even if you have a privat server, everybody can access your photo in high resolution.
I would be glad, if a solution comes soon.
- photo_friend
- 2012-04-29 19:48:45
Some news about this really important topic?
I'm really happy with piwigo and I love it. But on the other hand I'm scared about this huge security issue. Nobody without permission should has any access to my photos. But looks like, everybody how knows the direct URL can access to the image files. That's strange and a problem. Why Piwigo has an user authentification, if anybody with technical knowledge can access all photos.
- Tim S
- 2011-07-31 16:38:40
but it's not compatible with Piwigo 2.2
Are there any plans to make it compatible?
Thank you
- plg
- 2011-06-24 00:37:38
Hi think this very old MOD is an answer extension:74, but it's not compatible with Piwigo 2.2
- mistic100
- 2011-06-24 00:27:42
right :s
sorry
- Zaphod
- 2011-06-24 00:16:40
This plugin seems to block hotlinks... not direct urls.
- mistic100
- 2011-06-23 23:07:25
it's possible with this plugin for exemple extension:291
but not up to date et perhaps tricky to use (I've not tested)