i know that crossfire blocks this sorta thing, but common, its soo simple to create a .php file that will answer with a proper image when crossfire comes to check it but will do a header redirection to the profile page which the browser will follow and crossfire will count the hit on my profile before the browser notices thats that page is not a proper image and will therefor not be displayed.
as an alternative i could do that kind of a thing on several other pages where i can tell that many crossfire users are registered aswell.
and no, i didnt try any of this, but if you can block this i'd really like to know how thats possible
sure, you COULD set up your server to treat img extensions as php files and so get past the extension block and you could also make the php script create a real image that then redirects but then I don't think 99% of crossfire can.
as you've said, no method is fool proof so you do the best you can. this blocks pretty much all chances of it happening, which if is the best option then it's the option I'll take.
and crossfire hasn't been blocking it since feb 2008 which is why it's been working thus far.
I'll gladly say "yeah I know" if you create a working poc that gets past it.
i think my description above is proof of concept enough;
i was just ridiculing your comment about how youre trying to block fakers who want to push their hitcounter.
outlining a method isn't a proof of concept, not sure if you know this :/ you were also hardly ridiculing the comment by saying there is a known method to get past it. Which as I've already said will defeat the majority of the little kiddies who set up a refresh page on their profile
wtf when did that come up
theres no safe way
as an alternative i could do that kind of a thing on several other pages where i can tell that many crossfire users are registered aswell.
and no, i didnt try any of this, but if you can block this i'd really like to know how thats possible
as you've said, no method is fool proof so you do the best you can. this blocks pretty much all chances of it happening, which if is the best option then it's the option I'll take.
and crossfire hasn't been blocking it since feb 2008 which is why it's been working thus far.
I'll gladly say "yeah I know" if you create a working poc that gets past it.
i was just ridiculing your comment about how youre trying to block fakers who want to push their hitcounter.
now say it pls
finish it off by setting up your apache install to let the gif run php code and i'll finish off the sentence :)
create an .htaccess file in the folder with this content:
RewriteEngine on
RewriteRule ^skooli.gif$ skooli.php [L,NC]
and call skooli.gif
I think you should take some of Xo's hits away!!!!
D: