Steven Lewis

Subscribe to Steven Lewis: eMailAlertsEmail Alerts
Get Steven Lewis: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn

Top Stories by Steven Lewis

In a world where information is power, images need protection as much as text documents. This article describes a way to apply an image security mechanism to protect files in an application that follows a ColdFusion security model. The examples that I give will work in a Windows environment and I'm sure they can be adapted to work in other environments with minimal changes. The described method isn't to prevent people from downloading images from your site, for example, by right-clicking and hitting save as or file save as. The method I'm proposing will prevent people from "hotlinking" to your site and using your images without your permission. Flawed Security Model Most sites that use ColdFusion to authenticate users are using some type of hidden variable not readily accessible to the user, such as client or session variables that annotate if a user is logged in or ... (more)