adding a timestamp in the resource’s url:

http://example.com/img.jpg?t=12234234 //append this in the server side

this fools the browser and server to think that it’s a new resource everytime. just make sure the value is different everytime. this applies to any resource (anyone correct me if i’m wrong) like plain html, images etc.

Random Querystring to avoid IE caching

However, the resource is still stored in the cache regardless if it has expired. All the browser does when a resource expires is to wait until the user checks the site again, re-downloads the resource and overwrites the existing one in the cache. Until the user does that, it does not delete the ones from the cache.

Another way to prevent caching is to use SSL in your connection. By default, browsers do not cache SSL’ed sites – one of the main reasons, aside from additional overhead for decryption, why SSL all over the place is avoided. However, still, some browsers allow SSL caching (as far as i know, Firefox does) AND still does not change the fact that the resource is sent to the user’s browser – which can be intercepted or viewed on a debugger.

All of the methods above can prevent cache but will NOT prevent anyone from stealing your images. The whole idea of the internet is to access resources from another computer. With that said, the user HAS ACCESS to those resources. Anything that arrives to the browser is subject to the user’s will. He may look at it, look at the source, intercept it on arrival, viewed using a debugger whatever.

Anything you put in a web page on the internet is like handing over a million dollars in the open – you can’t prevent thieves from watching, you may not know if the person you are dealing with is also a thief.

The only fool-proof way to avoid you images from being owned by someone else is to place a big watermark on it!