Protect Your Content

(Note: Right click in the boxes below, 'select all', and 'copy' the text. Paste it into a text editor like Editpad. Edit to suit your site, and save.)

Here are some tips to protect your content from being ripped off. Other sites can easily outrank you in SERPs for your own content. This can happen if they have higher PageRank than you, or get spidered by Google first.

#### Forbid requests for exploits & annoyances #### Copy and paste the following code into your .htaccess file:Options +FollowSymlinks RewriteEngine on## Bad requests RewriteCond %{REQUEST_METHOD} !^(GET|HEAD|POST) [NC,OR] ## CodeRed RewriteCond %{REQUEST_URI} ^/default\.(ida|idq) [NC,OR] RewriteCond %{REQUEST_URI} ^/.*\.printer$ [NC,OR]## Email RewriteCond %{REQUEST_URI} (mail.?form|form|form.?mail|mail|mailto)\.(cgi|exe|pl)$ [NC,OR] ## MSOffice RewriteCond %{REQUEST_URI} ^/(MSOffice|_vti) [NC,OR] ## Nimda RewriteCond %{REQUEST_URI} /(admin|cmd|httpodbc|nsiislog|root|shell)\.(dll|exe) [NC,OR] ## Various RewriteCond %{REQUEST_URI} ^/(bin/|cgi/|cgi\-local/|sumthin) [NC,OR] # RewriteCond %{THE_REQUEST} ^GET\ http [NC,OR] RewriteCond %{REQUEST_URI} /sensepost\.exe [NC,OR] RewriteCond %{HTTP_USER_AGENT} ^Mozzilla* [OR]RewriteCond %{HTTP_USER_AGENT} almaden [OR]RewriteCond %{HTTP_USER_AGENT} ^Anarchie [OR]RewriteCond %{HTTP_USER_AGENT} ^ASPSeek [OR]RewriteCond %{HTTP_USER_AGENT} ^attach [OR]RewriteCond %{HTTP_USER_AGENT} ^BackWeb [OR]RewriteCond %{HTTP_USER_AGENT} ^Bandit [OR]RewriteCond %{HTTP_USER_AGENT} ^BatchFTP [OR]RewriteCond %{HTTP_USER_AGENT} ^BlackWidow [OR]RewriteCond %{HTTP_USER_AGENT} ^Buddy [OR]RewriteCond %{HTTP_USER_AGENT} ^bumblebee [OR]RewriteCond %{HTTP_USER_AGENT} ^CherryPicker [OR]RewriteCond %{HTTP_USER_AGENT} ^ChinaClaw [OR]RewriteCond %{HTTP_USER_AGENT} ^CICC [OR]RewriteCond %{HTTP_USER_AGENT} ^Collector [OR]RewriteCond %{HTTP_USER_AGENT} copier [NC,OR]RewriteCond %{HTTP_USER_AGENT} ^Crescent [OR]RewriteCond %{HTTP_USER_AGENT} ^DA [OR]RewriteCond %{HTTP_USER_AGENT} ^DISCo [OR]RewriteCond %{HTTP_USER_AGENT} ^Drip [OR]RewriteCond %{HTTP_USER_AGENT} ^DSurf15a [OR]RewriteCond %{HTTP_USER_AGENT} ^eCatch [OR]RewriteCond %{HTTP_USER_AGENT} ^EasyDL/2.99 [OR]RewriteCond %{HTTP_USER_AGENT} ^EmailSiphon [OR]RewriteCond %{HTTP_USER_AGENT} email [NC,OR]RewriteCond %{HTTP_USER_AGENT} ^Express\ WebPictures [OR]RewriteCond %{HTTP_USER_AGENT} ^ExtractorPro [OR]RewriteCond %{HTTP_USER_AGENT} ^EyeNetIE [OR]RewriteCond %{HTTP_USER_AGENT} ^FileHound [OR]RewriteCond %{HTTP_USER_AGENT} ^FlashGet [OR]RewriteCond %{HTTP_USER_AGENT} ^GetRight [OR]RewriteCond %{HTTP_USER_AGENT} ^GetSmart [OR]RewriteCond %{HTTP_USER_AGENT} ^gigabaz [OR]RewriteCond %{HTTP_USER_AGENT} ^Go!Zilla [OR]RewriteCond %{HTTP_USER_AGENT} ^Go-Ahead-Got-It [OR]RewriteCond %{HTTP_USER_AGENT} ^gotit [OR]RewriteCond %{HTTP_USER_AGENT} grab [NC,OR]RewriteCond %{HTTP_USER_AGENT} ^Grafula [OR]RewriteCond %{HTTP_USER_AGENT} ^grub-client [OR]RewriteCond %{HTTP_USER_AGENT} ^HMView [OR]RewriteCond %{HTTP_USER_AGENT} httrack [NC,OR]RewriteCond %{HTTP_USER_AGENT} ^httpdown [OR]RewriteCond %{HTTP_USER_AGENT} ^ia_archiver [NC,OR]RewriteCond %{HTTP_USER_AGENT} ^Image\ Stripper [OR]RewriteCond %{HTTP_USER_AGENT} ^Image\ Sucker [OR]RewriteCond %{HTTP_USER_AGENT} ^Indy*Library [OR]RewriteCond %{HTTP_USER_AGENT} ^InterGET [OR]RewriteCond %{HTTP_USER_AGENT} ^InternetLinkagent [OR]RewriteCond %{HTTP_USER_AGENT} ^Internet\ Ninja [OR]RewriteCond %{HTTP_USER_AGENT} ^InternetSeer.com [OR]RewriteCond %{HTTP_USER_AGENT} ^Iria [OR]RewriteCond %{HTTP_USER_AGENT} ^JBH*agent [OR]RewriteCond %{HTTP_USER_AGENT} ^JetCar [OR]RewriteCond %{HTTP_USER_AGENT} ^JustView [OR]RewriteCond %{HTTP_USER_AGENT} ^larbin [OR]RewriteCond %{HTTP_USER_AGENT} ^LeechFTP [OR]RewriteCond %{HTTP_USER_AGENT} ^lftp [OR]RewriteCond %{HTTP_USER_AGENT} ^Link*Sleuth [OR]RewriteCond %{HTTP_USER_AGENT} ^likse [OR]RewriteCond %{HTTP_USER_AGENT} ^LinkWalker [OR]RewriteCond %{HTTP_USER_AGENT} ^Mag-Net [OR]RewriteCond %{HTTP_USER_AGENT} ^Magnet [OR]RewriteCond %{HTTP_USER_AGENT} ^Memo [OR]RewriteCond %{HTTP_USER_AGENT} ^Microsoft.URL [OR]RewriteCond %{HTTP_USER_AGENT} ^MIDown\ tool [OR]RewriteCond %{HTTP_USER_AGENT} ^Mirror [OR]RewriteCond %{HTTP_USER_AGENT} ^Mister\ PiX [OR]RewriteCond %{HTTP_USER_AGENT} ^Mozilla.*NEWT [OR]RewriteCond %{HTTP_USER_AGENT} ^Mozilla*MSIECrawler [OR]RewriteCond %{HTTP_USER_AGENT} FrontPage [NC,OR]RewriteCond %{HTTP_USER_AGENT} ^MSIECrawler [OR]RewriteCond %{HTTP_USER_AGENT} ^MSProxy [OR]RewriteCond %{HTTP_USER_AGENT} ^Navroad [OR]RewriteCond %{HTTP_USER_AGENT} ^NearSite [OR]RewriteCond %{HTTP_USER_AGENT} ^NetAnts [OR]RewriteCond %{HTTP_USER_AGENT} ^NetMechanic [OR]RewriteCond %{HTTP_USER_AGENT} ^Net\ Vampire [OR]RewriteCond %{HTTP_USER_AGENT} ^NetZIP [OR]RewriteCond %{HTTP_USER_AGENT} ^NICErsPRO [OR]RewriteCond %{HTTP_USER_AGENT} ^Ninja [OR]RewriteCond %{HTTP_USER_AGENT} ^Octopus [OR]RewriteCond %{HTTP_USER_AGENT} offline [NC,OR]RewriteCond %{HTTP_USER_AGENT} ^Openfind [OR]RewriteCond %{HTTP_USER_AGENT} ^PageGrabber [OR]RewriteCond %{HTTP_USER_AGENT} ^Papa\ Foto [OR]RewriteCond %{HTTP_USER_AGENT} ^pcBrowser [OR]RewriteCond %{HTTP_USER_AGENT} ^Ping [OR]RewriteCond %{HTTP_USER_AGENT} ^PingALink [OR]RewriteCond %{HTTP_USER_AGENT} ^Pockey [OR]RewriteCond %{HTTP_USER_AGENT} ^Proxtrans [OR]RewriteCond %{HTTP_USER_AGENT} ^Pump [OR]RewriteCond %{HTTP_USER_AGENT} ^Reaper [OR]RewriteCond %{HTTP_USER_AGENT} ^Recorder [OR]RewriteCond %{HTTP_USER_AGENT} ^QRVA [OR]RewriteCond %{HTTP_USER_AGENT} ^ReGet [OR]RewriteCond %{HTTP_USER_AGENT} ^Seeker [OR]RewriteCond %{HTTP_USER_AGENT} ^Siphon [OR]RewriteCond %{HTTP_USER_AGENT} ^sitecheck.internetseer.com [OR]RewriteCond %{HTTP_USER_AGENT} ^SiteSnagger [OR]RewriteCond %{HTTP_USER_AGENT} ^SlySearch [OR]RewriteCond %{HTTP_USER_AGENT} ^Snake [OR]RewriteCond %{HTTP_USER_AGENT} ^SpaceBison [OR]RewriteCond %{HTTP_USER_AGENT} ^Stripper [OR]RewriteCond %{HTTP_USER_AGENT} ^Sucker [OR]RewriteCond %{HTTP_USER_AGENT} ^SuperHTTP [OR]RewriteCond %{HTTP_USER_AGENT} ^Szukacz [OR]RewriteCond %{HTTP_USER_AGENT} ^tAkeOut [OR]RewriteCond %{HTTP_USER_AGENT} ^Teleport\ Pro [OR]RewriteCond %{HTTP_USER_AGENT} ^Vacuum [OR]RewriteCond %{HTTP_USER_AGENT} ^VoidEYE [OR]RewriteCond %{HTTP_USER_AGENT} ^Web\ Image\ Collector [OR]RewriteCond %{HTTP_USER_AGENT} ^Web\ Sucker [OR]RewriteCond %{HTTP_USER_AGENT} ^WebAuto [OR]RewriteCond %{HTTP_USER_AGENT} ^[Ww]eb[Bb]andit [OR]RewriteCond %{HTTP_USER_AGENT} ^WebFetch [OR]RewriteCond %{HTTP_USER_AGENT} ^WebHook [OR]RewriteCond %{HTTP_USER_AGENT} ^WebMiner [OR]RewriteCond %{HTTP_USER_AGENT} ^WebMirror [OR]RewriteCond %{HTTP_USER_AGENT} ^WebReaper [OR]RewriteCond %{HTTP_USER_AGENT} ^WebSauger [OR]RewriteCond %{HTTP_USER_AGENT} ^Website [OR]RewriteCond %{HTTP_USER_AGENT} ^Website\ eXtractor [OR]RewriteCond %{HTTP_USER_AGENT} ^Webster [OR]RewriteCond %{HTTP_USER_AGENT} ^WebStripper [OR]RewriteCond %{HTTP_USER_AGENT} ^WebWhacker [OR]RewriteCond %{HTTP_USER_AGENT} ^WebZIP [OR]RewriteCond %{HTTP_USER_AGENT} ^Wget [OR]RewriteCond %{HTTP_USER_AGENT} ^Whacker [OR]RewriteCond %{HTTP_USER_AGENT} ^Widow [OR]RewriteCond %{HTTP_USER_AGENT} ^x-Tractor [OR]RewriteCond %{HTTP_USER_AGENT} ^Xenu [OR]RewriteCond %{HTTP_REFERER} ^http://www.iaea.org$ [OR]RewriteCond %{HTTP_USER_AGENT} ^Zeus RewriteRule ^(.*) - [L,F] # Forbid if blank Referer *and* User Agent, except for HEAD requestsRewriteCond %{REQUEST_METHOD} !^HEAD$RewriteCond %{HTTP_REFERER} ^$ [OR]RewriteCond %{HTTP_REFERER} ^-?$RewriteCond %{HTTP_USER_AGENT} ^$ [OR]RewriteCond %{HTTP_USER_AGENT} ^-?$RewriteRule .* - [F]

2. Forbid visitors from Russia, China, Romania etc. using .htaccess.

This is to bar countries that are more likely to try leeching, or other jiggery-pokery:

## Deny countries and anonymous proxy services. ## Copy and paste the following code into your .htaccess file:######<Limit GET> order allow,denyallow from all## Denial based of country of origin. deny from .sy deny from .tr deny from .as deny from .th deny from .cz deny from .gr deny from .ir deny from .iq deny from .za deny from .br deny from .sk deny from .ve deny from .kr deny from .nl deny from .ru deny from .ch deny from .af deny from .al deny from .be deny from .br deny from .eg deny from .hk deny from .is deny from .in deny from .id deny from .jp deny from .lr deny from .ly deny from .mx deny from .ni deny from .pk deny from .ro deny from .rw deny from .sg deny from .za deny from .gmx.net deny from .il.us deny from .il ## These are anonymous proxy servicesdeny from megagiga.com deny from netzero.net deny from spaceproxy.com deny from anonymizer.com deny from drikka.net deny from netdirect.net deny from juno.com deny from voyager.net deny from globali.netdeny from the-cloak.com deny from anonymouse.wsdeny from megaproxy.com</Limit>## Allow a blank line after the last .######

Add or delete countries according to your needs by downloading this file:

http://www.location.com.my/Countries.zip

You can use the database within to sort countries by continent, and build up a list.

Some Third-World countries are noted for hacking and fraud. You may think you want the whole world to come to your site, but you don't. Most of the world is poor, and $30.00 USD is a lot of money. It's not that they wouldn't _like_ to buy your goods; they just can't afford to. They are more likely to be tyre-kickers than customers.

3. Use absolute URLs in your internal links.

This is to have lots of links to your main site in any HTML copied from you. Plaster your absolute URL, phone number, email address, AND absolute IMG urls all over your pages. Then bar offsite image hot-linking, using .htaccess. You can use .htaccess mod_rewrite to replace hot-linked images with an image of your choice.

This makes it less worthwhile to copy your content. They get a lot of broken images and big ads for your site in it.

4. Bar offsite image hotlinking by using .htaccess mod_rewrite:

# IMAGE PROTECTION: Change the domain name and IP address to your own, # copy the code to a text file named '.htaccess' and put it in your image sub-directory. # This will prevent hot-linking of your images. # The image served instead can be any one you want, outside your image sub-directory.Options +FollowSymlinks RewriteEngine onRewriteCond %{HTTP_REFERER} !^http://.*yourdomain.com.*$ [NC]RewriteCond %{HTTP_REFERER} !^http://.*yourdomain.com:80.*$ [NC]RewriteCond %{HTTP_REFERER} !^http://66.33.65.177.*$ [NC]RewriteCond %{HTTP_REFERER} !^http://66.33.65.177:80.*$ [NC]RewriteRule [^/]+\.([Gg][Ii][Ff]|[Jj][Pp][Gg]|[Bb][Mm][Pp]|[Pp][Nn][Gg])$ http://www.yourdomain.com/kiss-my-bottom.gif [R,L]

5. Have a script generate a small amount of random content in the HTML of each page.

Find a random quote script at http://www.hotscripts.com. Get one that can be called using Server Side Includes (for static HTML pages), or a PHP one that you can insert in the footer file of your PHP site. Replace the included quotes with some original ones of your own.

This will make your page seem to be the latest, updated version of the content _if_ you have a higher Google PageRank than your plagiarist, _or_ Google indexes your content before theirs. Or both!

6. If copyists use Adsense, report them to Google via the Google adword link in each ad.

This is to rob them of the reason to rip-off your content. Google will (hopefully) terminate their account.

7. Insert a frame-breaking JavaScript in each page.

This is to break a stolen page out of any page framing it. Put this code anywhere after the <BODY> tag in your web page.

<SCRIPT LANGUAGE="JavaScript">
<!-- Begin
if (window != top) top.location.href = location.href;
// End -->
</SCRIPT>

8. Use Google Alerts to email you when your domain name turns up on a site they spider.

Google Alerts: http://www.google.com/alerts. Once I got an email about a site containing a URL of mine. Went to the site. Nothing but Google Adsense; no other text at all. The Google Alert email showed text I recognised as being mine. No sign of it in the HTML of the 'linking' site. Looked suspect. Ratted them out to Google Adsense.

9. Type this into the Google search box:

inurl:www.yoursite.com -site:www.yoursite.com

... to find possible plagiarists.

This command looks for sites with 'www.yoursite.com' in the URL, excluding your own. It will show sites using redirect scripts. Many are harmless, some are not.

Some sites use an Apache web server 302 temporary redirect to usurp your search engine results ranking. Google sometimes sees their site as the originator. It helps the plagiarists if they have a higher PageRank than you. Because Google is searching through its own cache of the competitor site, you can't block these redirects from your own site.

If the results from the query above contain URLs with script names like 'nph-proxy.cgi' in them, you may have a problem. However, Google seems to be getting better at pushing these sites into its supplemental listings.

The trick seems to be who gets spidered first, and who has higher PR. So get working on getting more links!

10. Put "noarchive" meta tags in all your pages. Stop your content being archived by legtimate bots. Put the following code between the <HEAD> tags in your HTML document:

<meta NAME="robots" CONTENT="index,follow,noarchive">
<meta name="googlebot" content="noarchive">

It stops plagiarists using search engine caches of your content.

11. Use a Redirect 301 in your .htaccess file to redirect from yourdomain.com to www.yourdomain.com, (or the reverse, whichever is the most common way you write your URLs).

Paste the following code into your .htaccess file, replacing 'yourdomain.com' with your domain name:

Options +FollowSymlinks
RewriteEngine on
RewriteCond %{HTTP_HOST} ^yourdomain\.com$ [NC]
RewriteRule ^(.*)$ http://www.yourdomain.com/$1 [L,R=301]

This stops search engines finding 'duplicate' copies of your site, and hammering you with a duplicate content penalty.

12. http://www.CopyScape.com can help find content thieves.

I wouldn't debate the matter with plagiarists. Give them 48 hours to remove your content, then inform their ISP. Accept no excuses, like "My web developer did it". That's the oldest get-out whine in the book: "Someone else did it, it wasn't me!".

Save your email correspondence as templates for future use.

13. You could also contact the plagiarists' advertisers.

For example: "Your ad is displayed on this page here blahdeblah.com/copypage.htm, check out my page here mysite.com/original.htm."

14. Slap them with a DMCA order.

A working example: http://www.google.com/dmca.html. DMCA means Digital Millenium Copyright Act. Relax, this is relatively easy. It's a formal way of telling web sites and search engines who the real owner of the content is, and getting them to remove plagiarism.

15. Contact their web host.

Most web hosts won't tolerate plagiarism; they don't want law suits. State your case simply, with examples, in an email to the technical support staff.

15. Encrypt your web page source code.

You use a software to change the HTML to JavaScript, so only a JavaScript-enabled browser can display it. You should also use JavaScript to disable mouse right-clicking, and pop-up the page, minus menu-bars, in a new browser window.

http://www.google.com/search?q=Javascript+HTML+encryption

You can't really have your cake and eat it, or display a web-page on the internet _and_ bar all copying, but you can frustrate it.

Individually these tricks wouldn't do much. Together, however, they will 'harden' your site.

About the author: T. O' Donnell (http://www.tigertom.com) is an ecommerce consultant in London, UK. His latest projects are a mortgage calculator and ebook, available at http://www.tigertom.com/mortgages-uk.shtml.