Hotlink File Prevention

描述

Hotlink File Prevention (HFP) offers simple hotlink protection that can be turned on/off for individual files in the WordPress media library.

“Hotlinking” is when a file, such as an image or PDF, is linked to from another website or entered manually in a web browser’s location bar. HFP only allows your file to be viewed on your website.

Hotlink protection is provided via .htaccess rules in the wp-content/uploads directory.

Basic Usage

Once the HFP plugin is activated, you will have two new features in the media library:

  1. Within the Screen Options tab (list view only), check box for the “Hotlink Prevention” column.
  2. To protect a file, edit the file and scroll down to the checkbox labelled “Hotlink Protection”.

Any asset that is checked will have “Yes” displayed in the “Hotlink Prevention” column; otherwise, this column will be blank.

Note about “Open in new tab” option

When you use the “Open in new tab” option for links, WordPress adds rel="noreferrer", which effectively makes the link act like direct access, and the link will be blocked for files protected using HFP.

螢幕截圖

  • Checkbox in the file edit dialog

安裝

  1. Go to “Plugins > Add New” in the WordPress admin area.
  2. Search for “Hotlink File Prevention”.
  3. Install, then Activate the plugin.

For more installation options and instructions, see “Installing Plugins” on WordPress.org.

常見問題

How does HFP work?

HFP creates an Apache .htaccess file in the wp-content/uploads directory. It sets a HTTP_REFERER check and RewriteRule for each file that has hotlink protection applied. Toggling hotlink protection on/off dynamically adds/removes RewriteRule statements.

Can it be used with any type of media file?

Yes, it works with any file that you upload to the media library.

Are my files absolutely safe using this plugin?

Here’s the deal: This plugin makes it harder for people to hotlink to your files, but if they are highly technical, they will be able to do things like fake the HTTP referrer.

Does it with with web servers other than Apache?

The server must process rewrite rules in .htaccess. So HFP will work on Apache and LightSpeed servers, but not NGINX.

評價

2024年6月2日
The plugin is activated, but other site still shows pictures from my site. RewriteRule 2017/03/Unity-Terrain03.png – [NC,L,F] Still there is no effect Added: The problem was in hosting settings – they disabled htaccess and used nginx. So I have to enable manual mode to turn on htaccess: Connect to the site with SSH Edit the config file for your site (example: ~/etc/httpd/php80/site-address.conf): <Directory /home/h12345678/site-address/docs/wp-content/uploads> AllowOverride All </Directory> 3. Use the plugin
2024年5月29日
I had an image on one of my website demos linking to over 100k sites, this plugin worked perfectly to block it.
2021年9月8日
After hours and hours of searching I finally found this plugin. It works great! I would like to see a feature that allows you to protect multiple media files at once. So that you don’t have to click on each file individually. Many thanks to the developers!
閱讀全部6個評價

貢獻者及開發者

“Hotlink File Prevention” 是一個開源的軟體。以下的人對這個外掛作出了貢獻。

貢獻者

將 Hotlink File Prevention 外掛本地化為台灣繁體中文版。

對開發相關資訊感興趣?

任何人均可瀏覽程式碼、查看 SVN 存放庫,或透過 RSS 訂閱開發記錄

修改日誌

2.0.0

  • Track protected files in wp_options table instead of individual post meta
  • Fixed htaccess rules to work with multiple protected files
  • Use insert_with_markers() to handle writing to htaccess
  • Added CSS for media library table column
  • Added uninstall hook

1.1.0

  • Modernized the code, and got it working again!
  • Updated README
  • Changed some strings, and made them translation-ready
  • Moved Hotlink Protection column before Date
  • Added deactivation hook to remove htaccess file

1.0.1

  • commented out error reporting
  • now uses just filename (followed by full path and name) in .htaccess; previously this was full path and location alone. Version 1.0.0 users should delete .htaccess from /uploads directory and rebuild file by clicking “update” on any file in Media Library that has “Yes” for Hotlink File Prevention.

1.0.0

  • Development version and Alpha release.