Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to hide "fonts" folder from public?

Tags:

css

I am using premium fonts on a website and linked them using 

@font-face {src: url(../fonts/fontName.ttf);}

The fonts folder is currently accessible by anyone by going to www.website.tld/fonts.

How can I be able to hide fonts directory from public access but still be able to use the fonts in our website.

Thanks.

like image 601
paulo Avatar asked Mar 14 '23 01:03

paulo

1 Answers

If you want to prevent font files showing up in your directory listing, use this in your .htaccess

IndexIgnore *.ttf *.woff *.woff2 *.eot, *.otf *.cff *.afm *.lwfn
IndexIgnore *.ffil *.fon *.pfm *.pfb *.svg *.std *.pro *.xsf

Obviously, you should only add the ones you use.
If you want to disable the directory listing of your entire /fonts folder use this instead (same file): 

<Directory /path/to/fonts>
  Options -Indexes
</Directory>

This, however, will only disable the listing of those files, not downloading. And disabling listing for resources that have publicly available download links (referenced in CSS in the case of font files) is absolutely pointless.

If you want to prevent clients (people, bots) from "illegally" downloading font files from your server... well, you can't.

You need to allow browsers (clients) to download the font file(s) so they render your website according to your designer's specs. Once used, a copy of any resource exists in the browser and you cannot stop savvy clients from accessing them, because you do not and cannot control their browser.

Your question has, probably, already been answered, in the agreement you signed with the author/vendor of the font. Using the font online is, most likely, clearly defined in that agreement.

If it's not, it is still the vendor/author that needs to provide you with the correct answer. Both technically and legally. And I believe the latter is what actually interests you.

By the way, this is the main reason the use for web is charged extra by most foundries: when they allow it, they allow a free download link (illegal if used for anything other than viewing the content it was provided for). All they can do about it is embed a notice telling the use of their font files without their knowledge and acceptance is illegal.

like image 127
tao Avatar answered Apr 26 '23 22:04

tao
Sign in to Comment

Related questions

Horizontal scroll to anchor
Making buttons the same width as text input fields in Firefox
What happens with display:initial on non CSS3 browsers?
Sidebar position "semi" fixed css
How can I set a transition for an element losing focus
Disable / remove the default input type= "email" validation text overlay in Firefox + Chrome?
select all elements with CSS if there are exactly 5
Can we use rem unit beyond font-size?
CSS and Javascript: Function to change color effects hover style
How to make a floating menu appear after you scroll past a certain point? [duplicate]
highlight table row with jquery
what happening with this CSS3? i can't find it
How to assign percentage values to div to divide entire page into 3 parts with body height = window's height
Create a grid with no spaces using table html
How to vertical align elements inside a div
jQuery Table row toggle show/hide associated with buttons
How HTML, JS and CSS work together
Correct way to set the path of a BackgroundImage in JavaFX CSS
Photo grid like the new flickr design
can't override inline style with ! important property?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!