Jump to content

Theme stealing

jhnstcks
 Share

Recommended Posts

jhnstcks Newbie

jhnstcks

Posted
Posted

If people are going to steal my themes the least they could do is removing the tracking codes that I have installed.

The codes installed let me track all your visitors and what they are doing on your sites, and are hidden in the files you have stolen off my servers.

Link to comment
Share on other sites
jhnstcks Newbie

jhnstcks

Posted
  • Author
Posted

If its my theme I can add tracking code if I want. Its not for sale and never has been, and was designed by myself.

I have since learnt how to protect the tpl files from being downloaded, and i am in the process of protecting the css files aswell.

Link to comment
Share on other sites
legendary11 Newbie

legendary11

Posted
Posted

You do know that doing this is illegal dont you? It is direct invasion of personal right going against the Human rights act it is also a sercurity risk to all shops using those themes.

Think about it if i got your theme (im guessing its a paid for theme then since they are stealing it) and placed it on any of my shopping sites you would then know what keywords brings me the most traffic and then duplicate the effect for yourself. How harsh i did not learn SEO over the last 5 years for a theme writter to steal my work and copy it.

So if your doing this on free themes your damn right out of order and if your a member of the UK or EU or created an agreement with one then your actually acting illegally. You dont go "i made the theme therefor anything i do on it is legal" in fact if you gave away a free theme with links on the bottom of the page they can actually remove them unless you have them sign a document agreeing that they will not remove the links.

oh p.s think its disgusting you would do such a black hat move on peoples hard work.

Link to comment
Share on other sites
first1 Newbie

first1

Posted
Posted

jhnstcks
Did they steal your theme/files from your website? or you gave them away to people.

If you gave them away by posting them somewhere as free themes then you should not track them.
but if they stole them from your website then you are right to do whatever you need to protect your files...

Link to comment
Share on other sites
first1 Newbie

first1

Posted
Posted

I still dont get it.
Legendary11, did you buy any themes from him?
Did he advertise them somewhere for (money or for free)?

If he did not, and yet someone stole them from his server (hacked and stole them) then he can have the tracking as security tracker to protect his property.
But by the sound of it, he is saying that people are stealing them from him, so he was not offering them.. so he could be right in protecting his stuff.

Link to comment
Share on other sites
Bleep Newbie

Bleep

Posted
Posted

I don't engage in theme stealing, but if people are that concerned about it, don't post your themes on here. The chances that someone will stumble upon it through the search engines or direct links are pretty small. Moreover, if you have built a high class theme that is extremely different from the default look, people who are familiar with prestashop may not even realize they are on such a site. Just my thoughts anyway.

Link to comment
Share on other sites
jhnstcks Newbie

jhnstcks

Posted
  • Author
Posted

1. The theme was never for sale or will be for sale (free or paid), as I dont sell themes.
2. I can do whatever I want with themes that I create and are located on my server.
3. Htaccess files dont protect css files unless you change their permission to 600, but then prestashop cant read the file, and I am now using one to rpotect my tpl files.

If you want to rpotect your files add an htaccess file with the following code into your theme root folder (where the tpl files are)

#securing your templates folder
Order deny,allow
Deny from all

# File types for which we make an exception.

   Order allow,deny
   Allow from all


ErrorDocument 403 "Sorry can't allow you access today
ErrorDocument 404 http://www.purplegiraffe.co.uk/404.php



4. I dont consider my theme worth stealing, but obviously someone does. I have removed the links to my site from the forums.
5. I have 2 prestashop webshops, one is my own theme creation the other is a bought theme, its my own theme that was stolen.
6. The 2 websites that I have tracked even took the google analytics code.
7. The trackig code I have installed even tracks when the theme is being used on a local server on your pc, and yes it is tracking a few of those too.
8. The website in question is http://sanalmagaza.de/prestashop/ and is using my theme in their theme changer. ( the pruple Theme). My tracking code starts at line 242.

Link to comment
Share on other sites
  • 6 months later...
mhu100 Newbie

mhu100

Posted
Posted
You need to create/edit the an htaccess file in whatever folder you want to protect and add the code i showed earlier.

It works by redirecting anyone trying to access the file formats stated in the htaccess file to a 403 redirect


Is a .htaccess file also working on a windows-server?
Link to comment
Share on other sites
Tine Chem Rookie

Tine Chem

Posted
Posted
If people are going to steal my themes the least they could do is removing the tracking codes that I have installed.

The codes installed let me track all your visitors and what they are doing on your sites, and are hidden in the files you have stolen off my servers.



Hi,

can you share with us how did you install tracking code to your theme?

thanks,
Link to comment
Share on other sites
ladivito Newbie

ladivito

Posted
Posted
the code is not working.....i follow the steps and paste the code but still able to download the tpl files.....

any idea ?

Thanks

Where did you download the code?



#securing your templates folder
Order deny,allow
Deny from all

# File types for which we make an exception.

   Order allow,deny
   Allow from all


ErrorDocument 403 "Sorry can't allow you access today
ErrorDocument 404 http://www.purplegiraffe.co.uk/404.php



as provided from the author and i just paste in a .htaccess and put in the folder of the module.
then i try to access to the .tpl file thru browser and i still able to download it.

anyone know how to do it ?

Link to comment
Share on other sites
mhu100 Newbie

mhu100

Posted
Posted
the code is not working.....i follow the steps and paste the code but still able to download the tpl files.....

any idea ?

Thanks

Where did you download the code?



#securing your templates folder
Order deny,allow
Deny from all

# File types for which we make an exception.

   Order allow,deny
   Allow from all


ErrorDocument 403 "Sorry can't allow you access today
ErrorDocument 404 http://www.purplegiraffe.co.uk/404.php



as provided from the author and i just paste in a .htaccess and put in the folder of the module.
then i try to access to the .tpl file thru browser and i still able to download it.

anyone know how to do it ?


You are probably on a windows server.
Link to comment
Share on other sites
  • 11 months later...
shacker Community Regular

shacker

Posted
Posted
the code is not working.....i follow the steps and paste the code but still able to download the tpl files.....

any idea ?

Thanks

Where did you download the code?



#securing your templates folder
Order deny,allow
Deny from all

# File types for which we make an exception.

   Order allow,deny
   Allow from all


ErrorDocument 403 "Sorry can't allow you access today
ErrorDocument 404 http://www.purplegiraffe.co.uk/404.php



as provided from the author and i just paste in a .htaccess and put in the folder of the module.
then i try to access to the .tpl file thru browser and i still able to download it.

anyone know how to do it ?


You are probably on a windows server.


Put 640 write permissons to the tpl files
Link to comment
Share on other sites
SockPants Newbie

SockPants

Posted
Posted

You can protect your files from being stolen the same way you can protect your images from being hotlinked to. There are multiple ways to do this, one way is cookies: a user must have a cookie from your site in order to access your files. Another is referrer: the referring url for the request has to be from your domain, this is only the case if the file is loaded as part of a webpage or is linked to from a webpage on your domain. You can use PHP and mod_rewrite to enforce this. You can use a combination of methods to protect your files.

For files that only need to be accessed from the server side, unlike css, you should always put them outside of the server directory. That is, if your site is located at /var/www/shop, you could put your templates in /var/shoptemplates/ so that the server can never see them. PHP will still be able to find the files there.

Link to comment
Share on other sites
Steppo Newbie

Steppo

Posted
Posted
You can protect your files from being stolen the same way you can protect your images from being hotlinked to. There are multiple ways to do this, one way is cookies: a user must have a cookie from your site in order to access your files. Another is referrer: the referring url for the request has to be from your domain, this is only the case if the file is loaded as part of a webpage or is linked to from a webpage on your domain. You can use PHP and mod_rewrite to enforce this. You can use a combination of methods to protect your files.



Alright interesting but to change the structure of the files in presta would make it not easy to update when that time comes, right?
How would you do to protect you files the best way without changing the structure. Would be great to know.
Is the method .htaccess not good enough?
Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing
×
×
  • Create New...