On Tue, 16 Nov 1999, Matt Sergeant wrote:
> For the unique IP in _most_ firewall cases, take the last comma separated
> value of the X-Forwarded-For header: $r->headers_in->get('x-forwarded-for');
except for all the clients at 192.168.1.100 (etc).
So you would have to get into "real ip / forwarded for" pairs, and the
harmful stupid people would at some point figure that out and put random
"forwarded for" thingies into their clients. Don't use anything but the
real ip for anything related to access policies based on ip addresses.
- ask
--
ask bjoern hansen - <http://www.netcetera.dk/~ask/>
more than 60M impressions per day, <http://valueclick.com>
- Stonehenge::Throttle, round 2 - CPU used by an IP Randal L. Schwartz
- Re: Stonehenge::Throttle, round 2 - CPU used by an... Jeffrey W. Baker
- Re: Stonehenge::Throttle, round 2 - CPU used b... Randal L. Schwartz
- Re: Stonehenge::Throttle, round 2 - CPU used b... Matt Sergeant
- Re: Stonehenge::Throttle, round 2 - CPU us... Ask Bjoern Hansen
- Re: Stonehenge::Throttle, round 2 - CPU used by an... Autarch
- Re: Stonehenge::Throttle, round 2 - CPU used by an... Leslie Mikesell
- Re: Stonehenge::Throttle, round 2 - CPU used b... Robin Berjon
- Re: Stonehenge::Throttle, round 2 - CPU used b... Randal L. Schwartz
- Re: Stonehenge::Throttle, round 2 - CPU us... Leslie Mikesell
