X-Forward-for

Started by r00tbear, January 15, 2015, 04:45:56 AM

Previous topic - Next topic

r00tbear

Hello,
I really need to get information about IP addresses of users using X-Forward-for, because I use cloudflare CND and now I see just cloudflare IPs in logs... I tried to use Bad Behavior mod, but it doesn't work or I didn't configure it right...

Kindred

well, the first question is: why are you using cloudflare?

1- it does not actually speed up a forum site
2- if you think that it obfuscates your server IP, then be aware that it does -- but only for people who don't know where to look
Слaва
Украинi

Please do not PM, IM or Email me with support questions.  You will get better and faster responses in the support boards.  Thank you.

"Loki is not evil, although he is certainly not a force for good. Loki is... complicated."

r00tbear

It helps to protect my server from script-kiddies, which can make me headache by using LOIC and other tools for "hacking by using just one big red button".

Arantor

Well, Cloudflare doesn't use X-Forward-For unless they've changed, they use a different header. I forget offhand which it is.

As for protecting from script kiddies, be aware that it is absolutely trivial to obtain your real IP address if your server sends email to them (like, say, the registration email).

r00tbear

"CloudFlare does append both X-Forwarded-For and X-Forwarded-Proto headers" from here hxxp:support.cloudflare.com/hc/en-us/articles/200170946-Does-CloudFlare-include-an-X-Forwarded-For-header- [nonactive]
And about emails - I don't use internal email system to send emails to users, just external, like gmail (external smtp servers). Yes, I'm paranoid :)

Arantor


r00tbear


Advertisement: