Hiding real url

Hi,

I need some help.
Here is code which I use:

<embed type="application/x-vlc-plugin" pluginspage="http://www.videolan.org" version="VideoLAN.VLCPlugin.2" width="715" height="400" id="vlc" loop="yes" autoplay="yes" target="geturl.php?id=1"scaleMode=stretch></embed>

Code (markup):

geturl.php

 
<?php
   error_reporting(0);
   $links = array(
       1 => 'hxxp://cds-se2.se.cds-sr1.vmo4.sbb.rs/live/ramdisk/hbo_srb/hls/hls-track_1=64000-video=2440000.m3u8'
   );
 
   $id = (int)$_GET['id'];
   if (isset($links[$id]))
        print($links[$id]);
?>
 

Code (markup):

I need to prevent that somebody see and can access geturl.php?id=1 if he put url on own site.

I can pay for working solution.

THX

 

I'm not entirely sure what you mean.
If you want to stop people being able to execute your script, perhaps use a secret key that only you now?

 

Sounds like you want hotlinking protection, and that needs to be done SERVER SIDE -- usually via http_referrer AND a session, though both can be faked and slapped aside fairly easy.

It is NOT something you can do client side since the information HAS to be able to be sent client-side to even work in the first place. This is why 99.9999999999999999999999999999999999% of the code people put onto media websites to prevent downloads is slapped aside easily by any script-kiddie in a matter of seconds...

... and why Netflix uses silverlight and hulu uses a flash player, both with encoded streaming - let's just say you will NEVER see either of them embracing HTML 5 Video.

When it comes to content delivery, HTML is insecure by design, because locking users out of taking content and doing what they want with it is the antithesis of the concepts on which the web was created!

 

THX deathshadow. I will try to figure something out to hide it. If you have any tips, pleas send me a pm.

 

Are you tried with .htaccess ?

 

@deathshadow, i've told him that also in a PM, and he told me "okay, then i'll dispute they payment" (which he previously sent me for doing that geturl.php). Thats fun.

 

As other posters have said, it isn't foolproof, but you would need a combination of checking the HTTP referrer, sessions and secret codes (which would be generated upon each page load).

 

I repeat as in the original post. I have done that "geturl.php" file that he asked for in a previous thread, he paid $10 via paypal. I gave him the file and provided a working demo and he suddenly claimed his money on paypal with the following reason "never didnt get the goods".

 

Pleas stop spamming this thread. Next time you will answer on msg's from your customers, you will not lie in public and you will finish work.

 

You asked me to do a geturl.php which gives you a specific link via an id. I did that. After that, you decided you want more than that, this printscreen here, is my proof. Grow up mate.

http://i.imgur.com/LJGxFDm.png

This kind of members don't deserve to be here.

 

You didn't do what I needed and that's it. You can talk what ever you wish.

 

I guess that screen prooves exactly that I did what you asked me to do. You decided later, after you took the file that it's not really what you want. But that's not my fault, because you asked for the wrong thing when you wanted to accomplish something else. How come it is my fault now ? You asked me for that file, i made it, you paid, you claimed. Then you decided that you wanted something else from me, but how could I know, I'm not a cleric. So you claimed your $10 because you can't explain yourself.

 

No, because you didn't wish to do what I paid for and you because you ignore my msg's when you wasn't able to do what i paid for. That's it. I'm out.

 

Dude you're just impossible, lets take this step by step and you tell me where i'm wrong.

You created the next topic:

I've made your geturl.php here , which serves EXACTLY what you asked in the previous thread:

<?php
error_reporting(0);
$links= array(
1=>'http://cds-se2.se.cds-sr1.vmo4.sbb.rs/live/ramdisk/hbo_srb/hls/hls-track_1=64000-video=2440000.m3u8'
);
$id = (int)$_GET['id'];
if (isset($links[$id]))
echo $links[$id];
 
?>
 

PHP:

This file, again, does EXACTLY what you asked for in the 1st thread. Now my question is, why claiming those money back ? Simple question, answer that if you can. I guess this is the final question where you cannot answer, since it prooves you just scammed me.

 

Look definition of hidden - this isn't hidden url. This is my last reply. Talk to the hand.

 

Mate, I really need to repeat this, this is YOUR THREAD:

This is what you asked for mate, I gave you this:

<?php
error_reporting(0);
$links= array(
1=>'http://cds-se2.se.cds-sr1.vmo4.sbb.rs/live/ramdisk/hbo_srb/hls/hls-track_1=64000-video=2440000.m3u8'
);
$id = (int)$_GET['id'];
if (isset($links[$id]))
echo $links[$id];
?>

PHP:

Now, again, and pay attention to this, this file does EXACTLY WHAT YOU ASKED FOR in that quoted thread. So whats the reason of taking back my money, just answer this.

Why should I care whats the definition of hidden, I have done exactly what you asked me. So, please, answer my question, why taking back my money when I've done EXACTLY what you wanted in that thread.

I have the answer, you gave a WRONG explanation of what you want. So you took my money back for that, and just AFTER you took my money, you made a new thread here : https://forums.digitalpoint.com/threads/hiding-real-url.2642803/ , asking for the right thing that you need.

So, I don't see why taking back my money for your mistake ? Answer this.

 

You didn't do your job and i asked here. Right. Now you know all.

 

Dude, you're just pathetic right now avoiding the obvious answer.
In your 1st thread, you say exactly:
Here is what I have: target="hxxp://realurl.com/abc"
What I need is: target="hxxp://mydomain.com/geturl?id=1"

And thats it, you didn't ask for anything else, so, I gave you geturl.php which allows you to replace hxxp://realurl.com/abc with hxxp://mydomain.com/geturl?id=1 .

What job didn't I do, what have I done wrong ? Answer this. As far as I can see, as well as everybody most likely, i've done everything you asked for. Replacing realurl with geturl.php. And you claimed your money back, which is named scamming.

 

i need to hide real url on my site.

 

Only you is one who scammed me and ignore me after i made payment. Plus i paid more then needed.