I’ve just finished up a php script that acts as jpg on my server, calling random images from another folder on that server, which I use on a forum. It works great, apart from one small problem: for some reason whenever I put the url for the php/jpg into my address bar, it calls the image URL into the address bar, so people can see the URL of the image being called.
This isn’t a terrible problem, but it would be nice if I could stop that from happening somehow.
Just to make sure I’m being clear: I have http://yoursite.com/avatar.jpg linked on a forum. When it’s loaded, it calls a random image from a specific folder, but when it’s loaded outside a webpage (in the address bar) it shows the URL of the image being called, which could lead to people hotlinking, etc.
I could always use a .htaccess file to stop any hotlinking, but I would feel a lot better if they didn’t even know the URLs of the images to begin with.
Thanks in advance for any help.
$dh = opendir(".");
while (false !== ($file = readdir($dh)))
if (preg_match(’/.(jpg|gif|png)$/i’, $file) and $file != “avatar.png”)
$filelist = $file;
$picnum = rand(0, sizeof($filelist) - 1);
header("Location: " . $filelist[$picnum]);