How do you block your download page from just any old random person from getting your products?

by blackhawkup Banned
13 replies
lets say i want to offer an ebook as a wso..

how would i block the ebook download page from random people just go directly to the pdf and downloading it??

what do you guys do to guard against, unwanted blackhatters that share links, and other people who look at the site map to find your download page?

a little help here goes a long way.

thanks
#block #download #page #person #products #random
  • Profile picture of the author Chad Heffelfinger
    Your best options would be to use www.e-junkie.com or wso pro to host and deliver your download. They are the most common options most people go with. They will protect/deliver and host your product.
    {{ DiscussionBoard.errors[2712943].message }}
  • Profile picture of the author spudnick
    There are a number of software web tools you can purchase which integrate with payment processors to automatically release downloads to buyers after they complete a purchase. They can also limit the amount of time avaialble to download the product (for example 72 hours from purchase) and also the number of times it can be downloaded in total.

    I have never used one of these tools myself, but have heard good reports about DLGuard.

    Personally, this is what I do:

    1) Put the file to be downloaded in an obscure location. For example - www.yourdomain.com/rhY73Sj!/shfnBLPoetr!sfg/file.zip

    2) DO NOT put this location in your sitemap.

    3) Make sure you set up your error redirects (such as 401 errors e.t.c) to redirect to an error page, or to your index.html

    4) DO NOT put this location in your Robots.txt file

    5) Make sure that people are not able to traverse up and down your sites structure.

    If you follow these steps, your downloads should be sufficiently secure. If you are more concerned, try something like DLGuard.

    My thoughts on these software tools has always been that if your product is that valuable and desriable, it is going to end up as a torrent somewhere or on Rapidshare. And all the kids know how to find that much more easily than a hidden directory on your server.

    My 2 cents. Hope it helps.

    Spudnick
    {{ DiscussionBoard.errors[2712946].message }}
    • Profile picture of the author blackhawkup
      Banned
      actually i guess i couldve reworded it because i want to block proplr from all of my downloads...not just my wso's....but your post helped alot...does anybody else have any other suggestions??


      Originally Posted by spudnick View Post

      There are a number of software web tools you can purchase which integrate with payment processors to automatically release downloads to buyers after they complete a purchase. They can also limit the amount of time avaialble to download the product (for example 72 hours from purchase) and also the number of times it can be downloaded in total.

      I have never used one of these tools myself, but have heard good reports about DLGuard.

      Personally, this is what I do:

      1) Put the file to be downloaded in an obscure location. For example - www.yourdomain.com/rhY73Sj!/shfnBLPoetr!sfg/file.zip

      2) DO NOT put this location in your sitemap.

      3) Make sure you set up your error redirects (such as 401 errors e.t.c) to redirect to an error page, or to your index.html

      4) DO NOT put this location in your Robots.txt file

      5) Make sure that people are not able to traverse up and down your sites structure.

      If you follow these steps, your downloads should be sufficiently secure. If you are more concerned, try something like DLGuard.

      My thoughts on these software tools has always been that if your product is that valuable and desriable, it is going to end up as a torrent somewhere or on Rapidshare. And all the kids know how to find that much more easily than a hidden directory on your server.

      My 2 cents. Hope it helps.

      Spudnick
      {{ DiscussionBoard.errors[2712969].message }}
    • Profile picture of the author CDarklock
      Originally Posted by spudnick View Post

      1) Put the file to be downloaded in an obscure location. For example - www.yourdomain.com/rhY73Sj!/shfnBLPoetr!sfg/file.zip
      A little more detail on this.

      In your main site's public_html folder, put another folder. We'll call it "warehouse" in this case.

      In your site's robots.txt file, add "Disallow: /warehouse/" so well-behaved search engine spiders won't index it.

      In the "warehouse" folder, put an index.html file with absolutely nothing in it, so badly-behaved search engine spiders CAN'T index it.

      Now, when you create a product, create a folder underneath the "warehouse" folder which is effectively a random name. Think of them like passwords: you want them to be things people can't guess, because that's what people are going to be doing.

      People are not stupid. People will get your robots.txt file and say "Aha! Warehouse!" and go to your "warehouse" folder. When they can't see what's in it, they'll start shooting in the dark: warehouse/YourProduct.pdf... warehouse/YourProduct.zip... warehouse/YourProduct/... but never "warehouse/Y7keH.eF9.gQ/" or anything like that. And even if they did, their chance of finding the actual folder for what they actually want is effectively zero.

      After you put your downloads in that folder, put the links on your download page, but remember: your folder names are passwords. Change them frequently. Once a week is good.

      And keep in mind that this is a temporary solution until you can get a real download protection mechanism, whether it's a service or a script.
      Signature
      "The Golden Town is the Golden Town no longer. They have sold their pillars for brass and their temples for money, they have made coins out of their golden doors. It is become a dark town full of trouble, there is no ease in its streets, beauty has left it and the old songs are gone." - Lord Dunsany, The Messengers
      {{ DiscussionBoard.errors[2713833].message }}
  • Profile picture of the author spudnick
    Oh, just re-read your initial post.

    I have only launched one WSO so far, and I used WSO Pro. It was fantastic!

    I am going to use it for all of my future WSO's for sure.

    For selling through Clickbank e.t.c., my above tips should work fine.

    Spudnick
    {{ DiscussionBoard.errors[2712948].message }}
  • Profile picture of the author eiilers
    I highly recommend e-junkie. Simple to use, and cheap. I'd go that route.
    Signature
    Steve Eilers
    Boost Marketing Group LLC
    www.boostGR.com

    {{ DiscussionBoard.errors[2712984].message }}
    • Profile picture of the author blackhawkup
      Banned
      does ejunkie support recurring payments??

      also, lets say i have a 6 month membership site and i wanted to offer a discount for the first month and normal price after that.....does ejunkie support that???


      Originally Posted by eiilers View Post

      I highly recommend e-junkie. Simple to use, and cheap. I'd go that route.
      {{ DiscussionBoard.errors[2713023].message }}
  • Profile picture of the author Istvan Horvath
    There is RAP, there is DLGuard - they all provide a personalized and expiring download link for buyers.

    As a free solution you may try this:
    http://www.warriorforum.com/main-int...ee-script.html
    Signature

    {{ DiscussionBoard.errors[2713018].message }}
  • Profile picture of the author Warrior Helper
    There are a number of options for protecting downloads. From Butterfly Marketing, Login Frequency Marketing, Simple Member Pro, Easy Member Pro, Viral Membership System, Memberwing, Rapid Action Profits, Nanacast, and many others.

    Since you mentioned recurring payments and membership site I highly suggest looking at the solutions I mentioned above. Two of them are products I created but all of them are quality products and will do a good job of protecting your downloads from non buyers.
    {{ DiscussionBoard.errors[2713042].message }}
  • Profile picture of the author sbucciarel
    Banned
    DLGuard is the best long term solution. Just buy it and use it for as many products as you want ... without monthly fees. Excellent program.
    {{ DiscussionBoard.errors[2713047].message }}
  • Profile picture of the author FrozenGod
    Build your own script using PHP.
    make a file named something like "dsadf432.php" after the payment you should send your buyers to this file (here will be the cookie insertion).
    At the end of the file make a simple redirect to you download page.
    On the download page insert a little PHP script to avoid entering it without the cookie, and after that insert the cookie deletion script.
    This way the person won't be able to enter your download page more than once and the person who didn't bought that will not be able to enter the page.
    About the FILE location - just make the link as button and not as a [a href] link, this way your customers will not be able to track the link (they WILL be able if they use downloads manager such as flashget).

    Anyway i think you can't really understand all what i wrote here lol, so just go and Google for "PHP, Cookies, PHP IF ELSE, HTML button url"

    Best Regards,
    Rico S.
    Signature
    "Formal education will make you a living; self-education will make you a fortune."
    {{ DiscussionBoard.errors[2713153].message }}
    • Profile picture of the author Warrior Helper
      That might work, and I stress might, if the OP only wanted to protect a single page for a one off payment product. The OP has already said he needs membership options and recurring billing. Trying to hand code that yourself, expecially if you know nothing about php is nothing but a waste of time.

      For what the OP had already said he needs the best and most cost effective solution is to go with an already established and proven system that is ready to go now, instead of spending months learning a new programming language and pulling your hair out trying to create something that is available by dozens of people right here on this forum alone.


      Originally Posted by FrozenGod View Post

      Build your own script using PHP.
      make a file named something like "dsadf432.php" after the payment you should send your buyers to this file (here will be the cookie insertion).
      At the end of the file make a simple redirect to you download page.
      On the download page insert a little PHP script to avoid entering it without the cookie, and after that insert the cookie deletion script.
      This way the person won't be able to enter your download page more than once and the person who didn't bought that will not be able to enter the page.
      About the FILE location - just make the link as button and not as a [a href] link, this way your customers will not be able to track the link (they WILL be able if they use downloads manager such as flashget).

      Anyway i think you can't really understand all what i wrote here lol, so just go and Google for "PHP, Cookies, PHP IF ELSE, HTML button url"

      Best Regards,
      Rico S.
      {{ DiscussionBoard.errors[2713177].message }}

Trending Topics