Anti-Leech

US3 storage space supports setting up an anti-leech policy. Once enabled, you can avoid the misuse of US3 resources by others, or the unnecessary loss caused by unauthorized public network traffic, by setting up a mechanism of black and white lists for access sources.

Set up Anti-Leech

1. Log in to the US3 Object Storage Console.

2. Click Single Region Space Management, then click the target Bucket.

3. In the top navigation bar, select Basic Settings, turn on the Anti-Leech switch, and then click Edit to enter an editable state:

4. Set according to actual needs, configuration item descriptions are as follows:

• Whitelist Referer: Allow domain names in the list to access the default access address of the storage space. If the domain name outside the list accesses the default access address of the bucket, it will return 403.

• Blacklist Referer: Deny domain names in the list to access the default access address of the storage space. If the domain name in the list accesses the default access address of the bucket, it will return 403.

Please enter the domain name or the regular expression representing the domain name URL, separated by carriage return or English comma for multiple Refer rules.

• Allow Empty Referer:

  • Yes: indicates that a request without a Referer or with an empty Referer is allowed.

  • No: indicates that the request must carry a Referer and the Referer value cannot be empty. After disallowing empty Referer, only requests that contain the Referer field in the HTTP or HTTPS header can access US3 object storage resources.

6. Click OK to complete the anti-leech setting.