|
Frequently Ask Questions
Password/Hot-linking/Bandwidth/AVS/AntiTheft Protections
- How do I password protect my directories?
- How do I protect a member area for use with AVS services ?
- How does a bandwidth protection work?
- What's an Anti(Theft/Hack) protection ?
- How do I deny access to my website based on IP address(s) or host(s) ?
How do I password protect my directories?
From your control panel :
Now when you go to that directory on the browser you'll be asked to enter a username and a password
contents | top
How do I protect a member area for use with AVS services ?
The idea here is to make sure that visitors have no other
way to access your member area other than going through
AVS site and entering their id.
To accomplish this create .htaccess (there is a dot at the beginning of .htaccess ) file which
contains following ( make sure you change yourdomain and avsdomain to their correct values )
RewriteEngine On
RewriteCond %{HTTP_REFERER} !^http://([a-z0-9-]+\.)*yourdomain.com/ [NC]
RewriteCond %{HTTP_REFERER} !^http://([a-z0-9-]+\.)*avsdomain.com/ [NC]
RewriteRule /* http://www.yourdomain.com [R,L]
Upload this file into your members area.
contents | top
How does a bandwidth protection work?
Lets say there are two sites :
yoursite.com and bandwidth-thief.com.
And bandwidth-thief.com got images on
his pages which are actually linked to the images
on yoursite.com.
So when somebody goes to bandwidth-thief.com
images get serve by yoursite.com web server -- you pay for the
bandwidth which got generated by the visitors
of bandwidth-thief.com.
The way we stop this bandwidth theft is
by denying access to certain file types when
a request comes from a different site than
yours.
In other words if someone goes to a
page on bandwidth-thief.com which has links
similar to <img src=http://yoursite.com/picture.gif>
then our web server knowing that the requests actually
come from bandwidth-thief.com and not yoursite.com
will refuse to serve these images.
In technical terms we check HTTP_REFERER variable
to make sure it matches your site.
If you'd like bandwidth protection to be activated for your site
please provide us with what file types should be denied. In other
words we need to know file extensions of the files which you don't
want other sites to link to.
Ex. .gif, .jpeg,jpg,.rm, .avi,.mov
Also we can make a specific folder bypass hot-linking protection
so files placed in that folder can be hot-linked to.
contents | top
What's an Anti(Theft/Hack) protection ?
AntiTheft protects against someone trying to figure out the correct
user/password combination to the password protected area of your
website by brute force tactics. ( usually using software which tries
different user/password combinations until it gets it right)
It is activated by default for all the websites on our servers.
It also protects against users distrubuting the correct user/password
combinations to other users. It will delete/lock the user/password
if it notices that it's being used from the different number of locations
in the small period of time.
You can activate this service via control-panel.
contents | top
How do I deny access to my website based on IP address(s) or host(s) ?
Create .htaccess file with the following directives
Order Allow,Deny
Allow from all
Deny from <ip>
Examples:
To deny access to IP 168.192.0.1
Order Allow,Deny
Allow from all
Deny from 168.192.0.1
To specify an IP range:
Order Allow,Deny
Allow from all
Deny from 168.192.0
(this covers 168.192.0.1-168.192.0.255)
You can list multiple IPs
Order Allow,Deny
Allow from all
Deny from 168.192.0.1 122.191.0.1
You can also use host names
Order Allow,Deny
Allow from all
Deny from badhost.com
Upload this .htaccess file into your home directory.( one folder up from
the docs folder ), for username u101 it'll be /web1/users/u101/
contents | top
|
