• Hi, Pleskians! We are running a UX testing of our upcoming product intended for server management and monitoring.
    We would like to invite you to have a call with us and have some fun checking our prototype. The agenda is pretty simple - we bring new design and some scenarios that you need to walk through and succeed. We will be watching and taking insights for further development of the design.
    If you would like to participate, please use this link to book a meeting. We will sent the link to the clickable prototype at the meeting.
  • Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.

Wordpress toolkit hotlink protection - RSS feed

V

Vipa

Basic Pleskian
Hey there,

is it possible to exclude images in the rss feed from the hotlink protection?
 
No, It is impossible.

RSS-feed readers do exactly what "Hotlink protection" protects from: they display images (from your server, "wp-content/uploads/" directory) on a third-party resource.
 
Yes I know that RSS-feed readers do exactly what "hotlink protection" tries to prevent.
That's why I asked if it is possible to include an exception for this.
For example to exclude featured images from this protection as they are used for RSS feeds or if the page is posted to facebook or twitter.
Otherwise you cannot use hotlink protection if you want to use any of these services.
 
At the moment, this is impossible to do.

The whitelist of domains includes only the domain of the site and google.com, and is not available for manual configuration.

The only workaround is to add directives ("Additional Apache directives"/"Additional nginx directives" in the web server settings for the domain) that take priority over "hotlink protection" rules and return images for the required services.
 
Hi @Vipa

I wrote down your feature request. We'll see what we can do -- this is likely to be updated when we focus on security checkers again.
 
Update: we have added customization options to Hotlink protection. If they don't help you handle your case, please let us know.
 
You must log in or register to reply here.

Similar threads

H
Hotlink Protection - Chrome
Replies
1
Views
2K
Evgeny
E
K
Issue Website's own images are flagged as hotlinked
Replies
3
Views
5K
cicimarici
C
Dave W
Input RSS feed for Plesk changelog
Replies
3
Views
2K
pleskuser67553
P
T
WordPress NextGEN Gallery Plugin <= 0.96 - XSS Vulnerability
Replies
0
Views
861
Tinpeas
T
S
I can't install Wordpress with Wp Toolkit
Replies
1
Views
727
vbelozerov
V
Back
Top