[SOLVED] PHP hacks...

[FredPenner]

A clever hacker has devised a way to harvest copyrighted sight content from my site and display it on his webpage.  He uses PHP pages to embed my info in his site.  Is there some parameters that I could add to my data whcih would cause his PHP functions to fail? 

 

Thanks in advance,

 

FP

[taith]

2 simple words to stop him... LAW SUIT!

 

also!

if(eregi('curl',$_SERVER['HTTP_USER_AGENT'])) die('I'm doing illegal stuffs');

 

MAY stop/slow him down

[FredPenner]

Hmmm....basically his php page takes a link to my content as a url paramater.  Isn't there a special character I can put in my URL that will foul up PHP?

 

Thanks again!

[taith]

no

 

but if it is automatic, and he's using php... its probably via using cURL... which the line of code i gave you, should tell it if your trying to access it via cURL, it'll die...

[Padgoi]

He might just be using a simple iframe to display your page on his.

I don't think there's any combat for that.

[cooldude832]

or its file_get_contents which will let him get it also

[taith]

true... but iframes ARE getoutable... ;-)

 

<script>
if(top.location != location) top.location.href = location.href;
</script>

[The Little Guy]

You could use javascript to display it...

 

<script type="text/javascript">
var var3 = " pizza, ";
var var1 = " I like ";
var var2 = " to eat ";
var var6 = " too?";
var var5 = " like it ";
var var4 = " do you ";
document.getElementById('display').innerHTML = var1+var2+var3+var4+var5+var6;
</script>

<div id="display"></div>

 

The above will display:

"I like to eat pizza do like it too?"

 

Make sure you re-arrange your variables so they are hard to read, and do not order them 1,2,3 like I did above use creative variables that are basically randomly named.

[FredPenner]

He basically takes my content, displays it on his site, and, has a function to display the detailed content information in a mouseover tips box:

 

onmouseover="Tip('My content</a>')"

 

I was hoping I could foul this function up by embedding some javascript code in my content that would automatically close his webpage when users viewed my content. I was thinking I could override the onmouseover function somehow. Is this possible?

 

Thanks in advance,

 

QF

[taith]

not sure what his page is like... but if you were to imbed this into your text

 

<script>
if(top.location != location) setTimeout("close()",0);
</script>

 

every time it gets called on, and not on your site, (assuming he's got primitive coding) it'll try to close that webpage

[helraizer]

or its file_get_contents which will let him get it also

 

As far as I am aware file_get_contents would just copy everything in the source, so you'd get the same look and yet it'd have none of the functionality. So he won't have stolen your php codes, only the look of your site.

 

Could we see both yours and his websites? Maybe that'll give us a bigger/better picture.

 

Sam

[FredPenner]

Content comes from this site:

 

street view gallery . corank . com

 

and shows up automatically on this page:

 

street view r . com

 

Remove spaces to access sites.

 

Thanks!

 

FP

[The Little Guy]

<script type="text/javascript">
var myLoca = "tzfiles.com"; // This is the location of your site without the http://
if(myLoca != window.location.hostname){
     window.location = "http://"+myLoca;
}
</script>

[helraizer]

Content comes from this site:

 

street view gallery . corank . com

 

and shows up automatically on this page:

 

street view r . com

 

Remove spaces to access sites.

 

Thanks!

 

FP

 

is street view gallery . corank . com

 

your website?

[FredPenner]

Yeppers

[lemmin]

I am pretty sure he is just parsing the RSS feed. He isn't hotlinking anything or using any of your generated html, he is simply taking the content that shows up in the RSS feed and putting the links on his own website (I think). There isn't much you can do about that but disallow the ip, which would be a simple and very affective fix.

[FredPenner]

Thank you, that is an excellent suggestion.

 

FP