Just make a call using the Flash player to a PHP script which tells it which domain it's on along with some other details that pertain to your server. It's not 100% secure but it's sufficient! Considering there are a million and one details you could use to check it's your server. Make the call relative to the current domain though, and also die gracefully if the response is a 404.
Furthermore, consider creating a little promotional video that you could play instead of the actual video if the video resides on a site other than yours. If they're silly enough not to check the video after they've embedded, you've got yourself some free advertising!
You don't even need to place the videos on a sub-domain for this little trick to work if you don't want to.
The man who comes back through the Door in the Wall will never be quite the same as the man who went out.
The Following 2 Users Say Thank You to Wildhoney For This Useful Post:
Have a script that makes a call to a location below the web root. Or you can .htaccess it to deny all, leaving your server the only thing that can access it. I could be wrong,. but I believe there is no way to download a file that is below the web root unless the script has it do so.
The Following User Says Thank You to Village Idiot For This Useful Post:
Well.... lets say they do something along these lines:
1. You go and click on a download link on the site
2. when a download request is triggerd, a script generates a download link wich links to a file outside webroot. In the form that its a script that picks up the file and then triggers a download window in the browser when clicked like "download.php?id=2323". When clicked it should check that the ID is still valid for download and then proceed with download or remove the link and then display an errror.
3. When a succesfull download is done the link will only survive for a set amount of time then "die" in other words become invalid.
Wich means that you make sure the script that generates a download link checks to see that the request comes from a script on your site and not from the outside. And make a check in the script that "picks up" the download.
Hope this thoughts are usefull.
Of course the whole point of a doomsday machine, would have been lost if you keep it a secret.
The Following User Says Thank You to EyeDentify For This Useful Post:
I'll give you a hint. The script has to do with a combination of readfile(), and header()---beyond the referrer check of course. The reason we suggest you store the downloads outside the root html directory is so that no one can directly link to those files.
To take the first example from the PHP manual, and fix it a bit:
// We'll be outputting a PDF
// It will be called downloaded.pdf
header('Content-Disposition: attachment; filename="downloaded.pdf"');
// The filesize, so progress bars show up right
// The PDF source is in original.pdf
Betcha already can think of how to use stuff like this.
__________________ Programmers are in a race with the Universe to create bigger and better idiot-proof programs, while the Universe is trying to create bigger and better idiots. So far the Universe is winning. - Rich Cook
The Following 2 Users Say Thank You to RobertK For This Useful Post: