Stolen Flash
Out of context: Reply #24
- Started
- Last post
- 26 Responses
- eik0
SWF SECURITY TUTORIAL:
Ok, guys, i did this once and it worked 100% for me, unfortunately, when switching to mac, i lost all my script files,but i can tell you how it works:
1. your main swf file is a loader (container), i used additional tag on the pages to pass on what swf to load from a PHP page.
2. contains the name of the movie (or resource like XML), but not the whole path
3. loader calls the .php script and passes on the value.
4. php script checks for the refferer, if it is "www.yoursite.com" then it goes on, else - returns error.
5. then the script adds the "path-to-swf-or-XML" to the value received from swf
6. finally, it ataches and etc. (i think there are 4 in total) file headers to swf and returns it back to your container movie.Result: nothing is cached, the file location is unknown to users, the code is SAFE - voila!
Hint! try to put the code in hard-to-gues directory.
ohh.... and if you make this script, please send it to me to, i'm just too lazy to do it myself :)