Greetings;
I know this is probably off topic, but I am wondering how others
might have approached this problem.
I have a script which I want to be executed only from within a single
domain. I put in a simple routine that prevented the script from
operating based on the referer value. Unfortunately I learned much
to my annoyance that not all people provide a referer value. Hence
I was forced into doing something like this;
sub lockout
{
if ($ENV{'HTTP_REFERER'}!="") # null referer, let the routine go
{
if ($ENV{'HTTP_REFERER'}!~/$ownerDomain/)
{
print "Content-type: text/html\r\n\r\n";
print "We're sorry, but this application can be executed \n";
print "Only from the $ownerDomain domain.<p>\n";
blah
blah
blah
exit;
}
}
}
Now I'm faced with an issue of an outright copyright violation where
someone has basically copied all 500+ pages of our site.
Unfortunately the odds of being able to prosecute the violators are
slim as the country they are in rarely pays attention to western
copyright laws. So what I need to do is somehow fix this lockout
routine so that this bogus website cannot remotely execute our
script. Its got to be something that they cannot lift from the html
code. Is there some variable in the environment that is ALWAYS
returned that I can test for? I don't want to lock out the people who's
system doesn't provide a referer just because of one bad apple.
My apologies for being off topic, but since the code in question is
software using lwp extensively, I feel that others here must have
addressed this situation, if for no other reason than to limit the
burden on their servers.
Thanks
Bob Minnick, Northern Webs
Bob Minnick, President, Northern Webs 208.265.0474
|
Maingpage: http://www.northernwebs.com
Meta Medic: http://www.northernwebs.com/set/setsimjr.html
SpiderView: http://www.northernwebs.com/set/spider_view.html
