- This topic has 5 replies, 3 voices, and was last updated 14 years, 3 months ago by
.
-
Posts
-
1.I tried sending a test link through a “squeeze” page with eStore, the link was a S3 type ,and when getting the email, someone can really see the bucket’s name and the file itself when copying and pasting the link into the browser , this leaves the encryption almost useless.
2.Will there be a support for Cloudfront by Amazon ?
Thanks
The bucket and object names are protected with Amazon’s expiring URL request, which is the long query string at the end of the URL. So long as the object is not marked as public access, in the S3 console, nobody can access it without the proper authorization.
The encrypted eStore link still serves the purpose of limiting the number of times and period for which files can be accessed. Each time an encrypted link is used, it is converted into an expiring URL request, which must be used within 5 minutes (default).
If a buyer tries to bookmark the expiring URL request, and uses it after 5 minutes (default), they will be blocked by Amazon security.
P.S. I am assuming you used the eStore S3 integration feature.
@mj77, Try to understand what it really does before you call something useless!
I tried the eStore plugin with S3 and ,yes , it works and really thankful for that. (when thinking of encryption some might expect a total url name change) . what i mean that the bucket name is still exposed and someone might try to mess with it.
- You must be logged in to reply to this topic.