Re: [PHP] Determining IP address
hmmm... for those of us really in the know... spoofing doesn't let an invalid user get access to sensitive data on your site. if someone is spoofing a valid ip address, the return packets will travel to the spoofed ip address, not to the 'real' ip address of the spoofer. so, even though they have a 'valid' ip address, they still can't see anything. mike on 9/6/01 1:31 AM, Tom Carter at [EMAIL PROTECTED] wrote: > Just to bring that point up again for those in the know, IP addresses > are easy to spoof, in other words make it appear that it comes from > elsewhere. If your system contains sensitive or confidential data then I > would suggest you do both - username/password and IP -- mike cullerton -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
Re: [PHP] Determining IP address
Just to bring that point up again for those in the know, IP addresses are easy to spoof, in other words make it appear that it comes from elsewhere. If your system contains sensitive or confidential data then I would suggest you do both - username/password and IP Do you have an intranet/secure internal network? Tom > > I was wondering if there is a way in PHP that you can determine the IP > > address? I am wondering because I am developing a simple web based > > program (in php) for use in a hospital setting and I want to do some > > checks to make sure that the program is not being run from a computer > > outside of the hospital. Instead of having user names and > > passwords, I thought it would be eaiser if I just checked the IP > > address, especially since this is not a program that really has to > > be secure, but I would like to prevent just anyone from using it. Is > > this possible with php? > > You can use $REMOTE_ADDR to find the IP address of the machine > accessing the script. > > It could be spoofed, though. > > Jason > > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > To contact the list administrators, e-mail: [EMAIL PROTECTED] > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
Re: [PHP] Determining IP address
> I was wondering if there is a way in PHP that you can determine the IP > address? I am wondering because I am developing a simple web based > program (in php) for use in a hospital setting and I want to do some > checks to make sure that the program is not being run from a computer > outside of the hospital. Instead of having user names and passwords, I > thought it would be eaiser if I just checked the IP address, especially > since this is not a program that really has to be secure, but I would > like to prevent just anyone from using it. Is this possible with php? > Thanks, > Andrew V. Romero Yes, you can get it from the webserver environment - there's a section in the Php manual about this here: http://www.php.net/manual/en/language.variables.external.php 'Environment variables' is the section you want jason -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
RE: [PHP] Determining IP address
> I was wondering if there is a way in PHP that you can determine the IP > address? I am wondering because I am developing a simple web based > program (in php) for use in a hospital setting and I want to do some > checks to make sure that the program is not being run from a computer > outside of the hospital. Instead of having user names and > passwords, I thought it would be eaiser if I just checked the IP > address, especially since this is not a program that really has to > be secure, but I would like to prevent just anyone from using it. Is > this possible with php? You can use $REMOTE_ADDR to find the IP address of the machine accessing the script. It could be spoofed, though. Jason -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
[PHP] Determining IP address
I was wondering if there is a way in PHP that you can determine the IP address? I am wondering because I am developing a simple web based program (in php) for use in a hospital setting and I want to do some checks to make sure that the program is not being run from a computer outside of the hospital. Instead of having user names and passwords, I thought it would be eaiser if I just checked the IP address, especially since this is not a program that really has to be secure, but I would like to prevent just anyone from using it. Is this possible with php? Thanks, Andrew V. Romero -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
