In my modify-only-with-password-mod i proofe id and password and only if they exist a link could be modified.
Now i think about protecting a dir with this way; so only if a user gives in the right id and password he will get a list with the "secret" urls. No prob so far; but with this every one could bookmark the given links, and no more identification is needed.
The next step could be to give back a dynamic frameset or dynamic site, but that´s not a practical way for my project, cause in the "secret" area, there are some other cgis like forum and so on and i cant programm these tools for completely new.

So the best way could be a .htaccess (with auth_db) to get the ID and pass directly from my links-db.
But this won´t help me, too.

So im looking for a way to protect a DIR, that only could be entered if the referrer is right, but without a cgi between. Has someone an idea, how to do? At the apache.org i cant find something about the .htaccess to do this?

But i think this would be really a great thing, isn´t it?
Maybe there are some special mods for the apache to ask for the referrer before let the people in.
So i will be the next hours at CPAN :-(

Robert