Skip Navigation

Block Prefetching

Posted April 20, 2005 in Blog

Mozilla and Google's prefetching functions are a nice addition to browser technology in many ways. Unsurprisingly, they are not very well thought through. The main two problems with the prefetching idea are that it messes with log files and it means every link on a page could potentially be followed despite the consequences (dangerous in a site administration context).

It appears from the FAQ that Google only intends their accelerator to prefetch specific pages, that have been specified with the <link> tag. However, many people are claiming that normal links have been prefetched.

To prevent prefetching of a page is simple: add the following PHP to the page you do not want prefetched:

  1. if ((isset($_SERVER['HTTP_X_MOZ'])) && ($_SERVER['HTTP_X_MOZ'] == 'prefetch')) {
  2. // This is a prefetch request. Block it.
  3. header('HTTP/1.0 403 Forbidden');
  4. echo '403: Forbidden<br><br>Prefetching not allowed here.';
  5. die();
  6. }

This will serve a "forbidden" header to the prefetcher. Normal browsing should be unaffected.

Block Prefetching was posted April 20, 2005 in Blog and has been tagged with php, prefetching, mozilla, block, google, reference and webdev.

3 comments

Keep up to date with this discussion with RSS or Atom.
Brett
United States #1: May 9, 2005
Products like Basecamp that use GET requests with intermediary Javascript confirm() calls for potentially dangerous actions such as deleting an item are suffering the most from prefetching.

I have to wonder why Javascript is used in favor of an intermediary confirmation screen that requires a POST request to complete the delete action?

Off the top of my head I can think of one big one: intercepting a GET request with Javascript saves the user (and the server) an additional page load.

XMLHttpRequest is perhaps an option, but is it yet viable?
I just had a look at http://www.mozilla.org/projects/netlib/Link_Prefetching_FAQ.html
Prefetching should only take place in link-tags with rel="prefetch". So if you really can reproduce a situation where if simply fetches all links file a bug at http://bugzilla.mozilla.org, here the responsible developers won't read it.

PS: really great comment preview, I start loving "Web 2.0" applications. :-)
Nemesis#13
Unknown #3: November 24, 2007
nice tip. thx

ps: some css rules for these inputs would make this site also look good on systems using unsuitable themes. i think, black text on white bg would do it already :)

Post Your Comment

· Comments with keywords instead of a name have their URLs removed.
· Your email address will not be displayed or shared.

Live Comment Preview

Anonymous
United States #4: 1 minute ago