| 2,8 → 2,8 |
|---|
| |
| /* |
| * IP functions |
| * Copyright 2015 Daniel Marschall, ViaThinkSoft |
| * Version 2015-10-27 |
| * Copyright 2015-2022 Daniel Marschall, ViaThinkSoft |
| * Version 2021-01-07 |
| * |
| * Licensed under the Apache License, Version 2.0 (the "License"); |
| * you may not use this file except in compliance with the License. |
| 18,11 → 18,12 |
|---|
| * limitations under the License. |
| */ |
| |
| function get_real_ip() { |
| // Attention in re $allow_proxy: It is not secure to use these, since they are not validated: http://www.thespanner.co.uk/2007/12/02/faking-the-unexpected/ |
| function get_real_ip($allow_proxy=false) { |
| /* Eindeutige IP Adresse erhalten, auch bei Proxies und (neu:) von SSH connections im CLI modus */ |
| // http://lists.phpbar.de/pipermail/php/Week-of-Mon-20040322/007749.html |
| // Modificated by VTS |
| // Version: 2015-10-27 |
| // Version: 2021-01-07 |
| |
| // TODO: ipv6 |
| |
| 29,12 → 30,8 |
|---|
| if (isset($_SERVER['SSH_CLIENT'])) { $ary = explode(' ', $_SERVER['SSH_CLIENT']); return $ary[0]; } |
| if (isset($_SERVER['SSH_CONNECTION'])) { $ary = explode(' ', $_SERVER['SSH_CONNECTION']); return $ary[0]; } |
| |
| $client_ip = (isset($_SERVER['HTTP_CLIENT_IP'])) ? $_SERVER['HTTP_CLIENT_IP'] : ''; |
| |
| // It is not secure to use these, since they are not validated: http://www.thespanner.co.uk/2007/12/02/faking-the-unexpected/ |
| // $x_forwarded_for = (isset($_SERVER['HTTP_X_FORWARDED_FOR'])) ? $_SERVER['HTTP_X_FORWARDED_FOR'] : ''; |
| $x_forwarded_for = ''; |
| |
| $client_ip = ($allow_proxy && isset($_SERVER['HTTP_CLIENT_IP'])) ? $_SERVER['HTTP_CLIENT_IP'] : ''; |
| $x_forwarded_for = ($allow_proxy && isset($_SERVER['HTTP_X_FORWARDED_FOR'])) ? $_SERVER['HTTP_X_FORWARDED_FOR'] : ''; |
| $remote_addr = (isset($_SERVER['REMOTE_ADDR'])) ? $_SERVER['REMOTE_ADDR'] : ''; |
| |
| if (!empty($client_ip)) { |