Originally Posted by firepages
you can't really do universal solutions for this , though you could put the images above the web-root and then use a script to read and display the images , being above the web-root the images will not be viewable directly but your scripts can easily get at them ... for PHP a simple <?readfile('/home/user/protected/imgname.jpg');?> would do the job, I assume such an approach works for ASP/IIS etc
Because of the way this is being distributed, running things above the root is not really an option.
Basically, I'm using php/mysql to run this. Images, when uploaded through the system, are given 9 digit random names like 8fn4ys7fj.jpg and such. (Then the image names are stored in the database, and then allowed to be viewed after a certain date)
The idea is that people cannot guess the name of the files within the folder - thus not being able to view the images. The only way they could put in the url is by already knowing the name (but by then, that means the image was already released), or by a really lucky guess (odds of 1 in 3656158440062976).
I just need to make sure that the names of the images arent spread around before their time. So assuming this isnt the pentagon, would this work?