Rev 2 | Only display areas with differences | Regard whitespace | Details | Blame | Last modification | View Log | RSS feed
| Rev 2 | Rev 4 | ||
|---|---|---|---|
| 1 | <?php |
1 | <?php |
| 2 | 2 | ||
| 3 | /* |
3 | /* |
| 4 | * IP functions |
4 | * IP functions |
| 5 | * Copyright 2015 Daniel Marschall, ViaThinkSoft |
5 | * Copyright 2015-2022 Daniel Marschall, ViaThinkSoft |
| 6 | * Version 2015-10-27 |
6 | * Version 2021-01-07 |
| 7 | * |
7 | * |
| 8 | * Licensed under the Apache License, Version 2.0 (the "License"); |
8 | * Licensed under the Apache License, Version 2.0 (the "License"); |
| 9 | * you may not use this file except in compliance with the License. |
9 | * you may not use this file except in compliance with the License. |
| 10 | * You may obtain a copy of the License at |
10 | * You may obtain a copy of the License at |
| 11 | * |
11 | * |
| 12 | * http://www.apache.org/licenses/LICENSE-2.0 |
12 | * http://www.apache.org/licenses/LICENSE-2.0 |
| 13 | * |
13 | * |
| 14 | * Unless required by applicable law or agreed to in writing, software |
14 | * Unless required by applicable law or agreed to in writing, software |
| 15 | * distributed under the License is distributed on an "AS IS" BASIS, |
15 | * distributed under the License is distributed on an "AS IS" BASIS, |
| 16 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
16 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| 17 | * See the License for the specific language governing permissions and |
17 | * See the License for the specific language governing permissions and |
| 18 | * limitations under the License. |
18 | * limitations under the License. |
| 19 | */ |
19 | */ |
| 20 | 20 | ||
| - | 21 | // Attention in re $allow_proxy: It is not secure to use these, since they are not validated: http://www.thespanner.co.uk/2007/12/02/faking-the-unexpected/ |
|
| 21 | function get_real_ip() { |
22 | function get_real_ip($allow_proxy=false) { |
| 22 | /* Eindeutige IP Adresse erhalten, auch bei Proxies und (neu:) von SSH connections im CLI modus */ |
23 | /* Eindeutige IP Adresse erhalten, auch bei Proxies und (neu:) von SSH connections im CLI modus */ |
| 23 | // http://lists.phpbar.de/pipermail/php/Week-of-Mon-20040322/007749.html |
24 | // http://lists.phpbar.de/pipermail/php/Week-of-Mon-20040322/007749.html |
| 24 | // Modificated by VTS |
25 | // Modificated by VTS |
| 25 | // Version: 2015-10-27 |
26 | // Version: 2021-01-07 |
| 26 | 27 | ||
| 27 | // TODO: ipv6 |
28 | // TODO: ipv6 |
| 28 | 29 | ||
| 29 | if (isset($_SERVER['SSH_CLIENT'])) { $ary = explode(' ', $_SERVER['SSH_CLIENT']); return $ary[0]; } |
30 | if (isset($_SERVER['SSH_CLIENT'])) { $ary = explode(' ', $_SERVER['SSH_CLIENT']); return $ary[0]; } |
| 30 | if (isset($_SERVER['SSH_CONNECTION'])) { $ary = explode(' ', $_SERVER['SSH_CONNECTION']); return $ary[0]; } |
31 | if (isset($_SERVER['SSH_CONNECTION'])) { $ary = explode(' ', $_SERVER['SSH_CONNECTION']); return $ary[0]; } |
| 31 | 32 | ||
| 32 | $client_ip = (isset($_SERVER['HTTP_CLIENT_IP'])) ? $_SERVER['HTTP_CLIENT_IP'] : ''; |
33 | $client_ip = ($allow_proxy && isset($_SERVER['HTTP_CLIENT_IP'])) ? $_SERVER['HTTP_CLIENT_IP'] : ''; |
| 33 | - | ||
| 34 | // It is not secure to use these, since they are not validated: http://www.thespanner.co.uk/2007/12/02/faking-the-unexpected/ |
- | |
| 35 | // $x_forwarded_for = (isset($_SERVER['HTTP_X_FORWARDED_FOR'])) ? $_SERVER['HTTP_X_FORWARDED_FOR'] : ''; |
34 | $x_forwarded_for = ($allow_proxy && isset($_SERVER['HTTP_X_FORWARDED_FOR'])) ? $_SERVER['HTTP_X_FORWARDED_FOR'] : ''; |
| 36 | $x_forwarded_for = ''; |
- | |
| 37 | - | ||
| 38 | $remote_addr = (isset($_SERVER['REMOTE_ADDR'])) ? $_SERVER['REMOTE_ADDR'] : ''; |
35 | $remote_addr = (isset($_SERVER['REMOTE_ADDR'])) ? $_SERVER['REMOTE_ADDR'] : ''; |
| 39 | 36 | ||
| 40 | if (!empty($client_ip)) { |
37 | if (!empty($client_ip)) { |
| 41 | $ip_expl = explode('.', $client_ip); |
38 | $ip_expl = explode('.', $client_ip); |
| 42 | $referer = explode('.', $remote_addr); |
39 | $referer = explode('.', $remote_addr); |
| 43 | if ($referer[0] != $ip_expl[0]) { |
40 | if ($referer[0] != $ip_expl[0]) { |
| 44 | $ip = array_reverse($ip_expl); |
41 | $ip = array_reverse($ip_expl); |
| 45 | $return = implode('.', $ip); |
42 | $return = implode('.', $ip); |
| 46 | } else { |
43 | } else { |
| 47 | $return = $client_ip; |
44 | $return = $client_ip; |
| 48 | } |
45 | } |
| 49 | } else if (!empty($x_forwarded_for)) { |
46 | } else if (!empty($x_forwarded_for)) { |
| 50 | if (strstr($x_forwarded_for, ',')) { |
47 | if (strstr($x_forwarded_for, ',')) { |
| 51 | $ip_expl = explode(',', $x_forwarded_for); |
48 | $ip_expl = explode(',', $x_forwarded_for); |
| 52 | $return = end($ip_expl); |
49 | $return = end($ip_expl); |
| 53 | } else { |
50 | } else { |
| 54 | $return = $x_forwarded_for; |
51 | $return = $x_forwarded_for; |
| 55 | } |
52 | } |
| 56 | } else { |
53 | } else { |
| 57 | $return = $remote_addr; |
54 | $return = $remote_addr; |
| 58 | } |
55 | } |
| 59 | unset ($client_ip, $x_forwarded_for, $remote_addr, $ip_expl); |
56 | unset ($client_ip, $x_forwarded_for, $remote_addr, $ip_expl); |
| 60 | return $return; |
57 | return $return; |
| 61 | } |
58 | } |
| 62 | 59 | ||