Hi,
I have used .htaccess Generator of Admin Tools to activate Server Protection (i.e. creating .htaccess file in root folder). I suppose that following lines of the .htaccess file:
##### Advanced server protection -- BEGIN
## Referrer filtering for common media files
RewriteRule ^(images/stories/.*\.(jpe|jpg|jpeg|jp2|jpe2|png|gif|bmp|css|js|swf|html|html))$ $1 [L]
RewriteCond %{REQUEST_FILENAME} -f
RewriteCond %{HTTP_REFERER} !^(http://www\.mydomain\.sk|https://www\.mydomain\.sk) [NC]
RewriteRule \.(jpe|jpg|jpeg|jp2|jpe2|png|gif|bmp|css|js|swf|html|html)$ - [F,L]
...
## Allow limited access for certain Joomla! system directories with client-accessible content
RewriteRule ^((components|modules|templates|images|plugins|media)/.*\.(jpe|jpg|jpeg|jp2|jpe2|png|gif|bmp|css|js|swf|html|mpg|mp3|mpeg|mp4|avi|wav|ogg|ogv|xls|xlsx|doc|docx|ppt|pptx|zip|rar|pdf|xps|txt|7z|svg|odt|ods|odp|flv|mov|ico|htm))$ $1 [L]
allows (besides another things) access to .swf files in any subdirectory in "/components" directory. However, as FireFox does not provide HTTP_REFERER parameter to web server, .swf files are inaccessible (i.e. they are not displayed on the web page) while using FireFox, but they are accessible (i.e. displayed on the page) while using IE8. My point is to have the .swf files correctly displayed on the web pages regardless which browser is used.
I have found workaround of this issue by adding line "RewriteCond %{HTTP_REFERER} !^$" into .htaccess file, i.e.:
##### Advanced server protection -- BEGIN
## Referrer filtering for common media files
RewriteRule ^(images/stories/.*\.(jpe|jpg|jpeg|jp2|jpe2|png|gif|bmp|css|js|swf|html|html))$ $1 [L]
RewriteCond %{REQUEST_FILENAME} -f
RewriteCond %{HTTP_REFERER} !^$
RewriteCond %{HTTP_REFERER} !^(http://www\.mydomain\.sk|https://www\.mydomain\.sk) [NC]
RewriteRule \.(jpe|jpg|jpeg|jp2|jpe2|png|gif|bmp|css|js|swf|html|html)$ - [F,L]
...
## Allow limited access for certain Joomla! system directories with client-accessible content
RewriteRule ^((components|modules|templates|images|plugins|media)/.*\.(jpe|jpg|jpeg|jp2|jpe2|png|gif|bmp|css|js|swf|html|mpg|mp3|mpeg|mp4|avi|wav|ogg|ogv|xls|xlsx|doc|docx|ppt|pptx|zip|rar|pdf|xps|txt|7z|svg|odt|ods|odp|flv|mov|ico|htm))$ $1 [L]
My question is whether this is the safe workaround or if there exists any other way how to solve this issue with FireFox and HTTP_REFERER parameter.
Thank you,
I have used .htaccess Generator of Admin Tools to activate Server Protection (i.e. creating .htaccess file in root folder). I suppose that following lines of the .htaccess file:
##### Advanced server protection -- BEGIN
## Referrer filtering for common media files
RewriteRule ^(images/stories/.*\.(jpe|jpg|jpeg|jp2|jpe2|png|gif|bmp|css|js|swf|html|html))$ $1 [L]
RewriteCond %{REQUEST_FILENAME} -f
RewriteCond %{HTTP_REFERER} !^(http://www\.mydomain\.sk|https://www\.mydomain\.sk) [NC]
RewriteRule \.(jpe|jpg|jpeg|jp2|jpe2|png|gif|bmp|css|js|swf|html|html)$ - [F,L]
...
## Allow limited access for certain Joomla! system directories with client-accessible content
RewriteRule ^((components|modules|templates|images|plugins|media)/.*\.(jpe|jpg|jpeg|jp2|jpe2|png|gif|bmp|css|js|swf|html|mpg|mp3|mpeg|mp4|avi|wav|ogg|ogv|xls|xlsx|doc|docx|ppt|pptx|zip|rar|pdf|xps|txt|7z|svg|odt|ods|odp|flv|mov|ico|htm))$ $1 [L]
allows (besides another things) access to .swf files in any subdirectory in "/components" directory. However, as FireFox does not provide HTTP_REFERER parameter to web server, .swf files are inaccessible (i.e. they are not displayed on the web page) while using FireFox, but they are accessible (i.e. displayed on the page) while using IE8. My point is to have the .swf files correctly displayed on the web pages regardless which browser is used.
I have found workaround of this issue by adding line "RewriteCond %{HTTP_REFERER} !^$" into .htaccess file, i.e.:
##### Advanced server protection -- BEGIN
## Referrer filtering for common media files
RewriteRule ^(images/stories/.*\.(jpe|jpg|jpeg|jp2|jpe2|png|gif|bmp|css|js|swf|html|html))$ $1 [L]
RewriteCond %{REQUEST_FILENAME} -f
RewriteCond %{HTTP_REFERER} !^$
RewriteCond %{HTTP_REFERER} !^(http://www\.mydomain\.sk|https://www\.mydomain\.sk) [NC]
RewriteRule \.(jpe|jpg|jpeg|jp2|jpe2|png|gif|bmp|css|js|swf|html|html)$ - [F,L]
...
## Allow limited access for certain Joomla! system directories with client-accessible content
RewriteRule ^((components|modules|templates|images|plugins|media)/.*\.(jpe|jpg|jpeg|jp2|jpe2|png|gif|bmp|css|js|swf|html|mpg|mp3|mpeg|mp4|avi|wav|ogg|ogv|xls|xlsx|doc|docx|ppt|pptx|zip|rar|pdf|xps|txt|7z|svg|odt|ods|odp|flv|mov|ico|htm))$ $1 [L]
My question is whether this is the safe workaround or if there exists any other way how to solve this issue with FireFox and HTTP_REFERER parameter.
Thank you,
