So this another tale of not rolling your own crypto. The blog post does a great job in not to sound arrogant and state a clear way out:
> Using HMAC or a modern hash/MAC function is the proper fix. For systems like BunnyCDN, adding a parameter such as ~ at the end of the query string provides a quick mitigation.
> Using HMAC or a modern hash/MAC function is the proper fix. For systems like BunnyCDN, adding a parameter such as ~ at the end of the query string provides a quick mitigation.