Hi,
I try to setup a safe environment for photos.
I manged to
-get large previews watermarked.
-disable "original" preview for visitors
-disable right click "save as"
But:
The images are simply accessible by their upload url so actually all I did is in vain.
Is there a way to encrypt uploads?
Best,
Rinus
Hello
our best advice -I really should write a wiki page about that-
[Forum, post 140461 by flop25 in topic 21104] Private photos are publicly accessible?
- $conf['original_url_protection'] = 'images'; with an htaccess Deny From All to deny access to upload and galleries folders
- use watermarks and/or don't set too large image size
- disable the attribute HD for users especially 'guest'
- disable javascript, right click, putting a blank image ont op etc are all useless
Offline
There is a plugin on Piwigo called "Add Index" that will help some, after you install it go tools/maintenance and pick Add and overwrite "index" files for all local sites
also if you have access to some cpanel /server options you can try setting uploads directory to "no-index"
as well in your robots.txt you can place the lines below for google and other good bots to follow.
# robots.txt file Please Obey
User-agent: *
Disallow:
Crawl-delay: 5
Disallow: /upload/
Last you can setup a php trap file for bad bots which makes it so when they scan the upload folder
they read a php file that adds their ip to the .htaccess file and prevents them from accessing the site again. That would be for the bad bots.
Hope this helps
Offline
Thank you flop25 and silhouett for taking the time to answer. Much appreciated!