php - $_SERVER['REMOTE_ADDR'] returns false IP -


i making anto-fload script site. cant use service handles fail2ban , like. question regarding $_server['remote_addr'] value. there way function return false ip? heared somewhere possible , want know how thats happening , can prevent it? thats script: 

        $ip = $_server['remote_addr'];     $query = "select * `banned_users` `ip`='".$ip."'";     if(mysql_num_rows(mysql_query($query))!=0)die("you have been banned site!");      if(isset($_session['views']) && isset($_session['time']) && $_session['time']>=time()-2)$_session['views']++;     else {         $_session['views']=1;         $_session['time'] = time();     }        if($_session['views']>=15){         $query = "insert `banned_users` values ('',".time().",'".$ip."') ";         mysql_query($query);         die();     }

as can see, if user makes more 15 refreshes in 2 seconds bans site. question have regarding 15 operations, value? should lower it? since hosting have has bandwidth limits.

thanks.

remote_addr supplied php web server. gets address of incoming ip request.

it accurate, but:

  • it can spoofed if knows they're doing , doesn't want traced.

  • it can have misleading value if user accessing site via proxy -- address you'll proxy's address rather user's end address. (you may or may not other $_server fields proxy forwarding address, depending on config of proxy. , cannot rely on being accurate)

  • if user within own network, nat, firewalls, proxies , other networking systems may result in address think of ip address may not address received site. may ever see single ip address or small range of addresses users within network. include lot of (most) businesses (ie people visiting office), , may include isps, means customers of isp may appear same ip address, , blocking 1 of them may block them all.

[can it] wierd combination of numbers , dots or null or else not ip?

i guess contain ipv6 address. if code expecting ever see ipv4 address, problem. in general, always valid ip address (even it's been spoofed, still need valid in order server accept connection).


Comments

Post a Comment

Popular posts from this blog

basic authentication with http post params android -

i doing basic authentication passing username , password , using basicnamevaluepair sending post params response service. my method: public stringbuilder callservicehttppost(string username, string password, string type) { // create new httpclient , post header httpclient httpclient = new defaulthttpclient(); httppost httppost = new httppost(webservice + type); httpresponse response = null; stringbuilder total = new stringbuilder(); try { url url = new url(webservice + type); /*string base64encodedcredentials = base64.encodetostring((username + ":" + password).getbytes(), base64.url_safe | base64.no_wrap);*/ string base64encodedcredentials = "basic " + base64.encodetostring( (username + ":" + password).getbytes(), base64.no_wrap); httppost.setheader("auth...
Read more

vb.net - Virtual Keyboard commands -

i wondering difference between virtual these keyboard commands is: keyeventf_extendedkey , keyeventf_keyup is. everywhere have looked gives me description based off integers , not want know each of them does. you've tagged question vb.net, these have nothing @ vb.net. they're constants defined in windows header files, use win32 api functions. as far difference, can't tell looking @ values. individual values not particularly important, that's why named identifiers used. what's important used , documentation functions tells mean. the first one, keyeventf_extendedkey , used keybdinput structure (which used along e.g. sendinput function) pass information synthesized keyboard input. if flag used, means scan code should interpreted extended key. technically, means scan code preceded prefix byte value 224 (&he0 in hexadecimal notation). the second one, keyeventf_keyup , 1 of flags available use structure. means key being released (going up)...
Read more

css - Firefox for ubuntu renders wrong colors -

Image
i've got following problem: i'm developing website, while testing around i've noticed firefox , chromium display css bar in different colors. when switched between several machine come conclusion firefox ubuntu problem. on other devices i've tested website. it's fine. the differences between chrome , firefox rendering: firefox: chromium: note: firefox ubuntu problem. does knows why , came solution? https://bugzilla.mozilla.org/show_bug.cgi?id=655637 bug 629312 - firefox displays wrong colors on image (only linux) open about:config , rechange gfx.color_management.mode 2 0.
Read more