tags:

views:

19

answers:

1
+1  Q: 

Balancing browser caching of images and time expiration of links to avoid bandwidth theft

We host our images on Amazon S3, and serve them through Amazon Cloudfront. We'd like to reduce our bandwidth expenses. We believe that we have quite a bit of bandwidth theft, and want to start using signed URLs to prevent this. However, we have to balance this against the fact that each time we send out a new signed url, it invalidates the browser caches for the image.

Our current plan is to generate a signed url that is valid for two months, then cache it locally and serve it for a month, before generating a new signed URL. This will allow the browser to cache the images for longer. However, this also means that anyone can then leech bandwidth for an image for up to two months.

Is there any way to have the link expire sooner, but have the browser continue to cache that image? I know that the etag and If-Modified-Since for the image do not change when the url is resigned for a new timestamp, but the the browser no longer knows to send those values in the header, because as far as it is concerned, this is a new URL. Is there any way around this problem?

A: 

Have you measured how much of your bandwidth is being stolen? ie, check how many requests you get for your images that don't have a referrer field set to your own site.

For optimum caching, we recommend caching for 10 years, so 2 months sounds like a little short.

bluesmoon  2010-07-16 22:50:53
We had tried logging, but didn't have any good way of going through the log files to quantitate how much bandwidth was being stolen. We are trying again, with s3stat.com. Looking at a log file at random generally shows some leeching--there are some chinese sites that hotlink our images. but it is hard to say how much it is costing us, vs how much it would cost us in bandwidth from reloads if we had to reduce cache times.
Karptonite  2010-07-18 08:02:35

related questions

What types of Technologies does Amazon.com use Internally
Max files per directory in S3
What is the best way to backup mysql in s3?
What are best practices for preventing stale CSS and JavaScript
How to upload a file with django (python) and s3?
Can I set the expires header on all objects in an Amazon S3 bucket all at once?
Anyone actually using Mosso Files (Amazon S3 competitor)?
Would an S3 cache module for IIS7 be useful?
Need assistance with diagnosing SOAP packet problem with Amazon S3
Best process for auto-zipping of multiple MP3s
Is it possible to change headers on an S3 object without downloading the entire object.
.NET library or asp.net application for Amazon S3
robocopy, jungledisk file copy problems.
SSH into Amazon EC2 Instance
Can you use Amazon S3 via Flex?
Experiences and tips for programming with and for Amazon's cloud servers/apps/tools?
Amazon - EC2 cost?
Amazon S3 standalone stub server
http PUT a file to S3 presigned URLs using ruby
Is Amazon S3 ready for prime time?
Amazon SimpleDB
Does Amazon S3 fail sometimes?
Is there a way to have index.html functionallity with content hosted on S3?
Delete Amazon S3 buckets?
Do you use Amazons Cloud services for your company?