Provide accurate handling of the Remote address information

mozilla-services / channelserver

🍐 A tool to associate instances of firefox.

Mozilla Public License 2.0

3 stars 6 forks source link

Provide accurate handling of the Remote address information #16

Closed jrconlin closed 6 years ago

jrconlin commented 6 years ago

it appears that actix takes a very simple view of how the remote address is resolved, which may lead to potential header spoofing. We may want to handle extracting the remote IP address from the request headers ourselves.

vladikoff commented 6 years ago

@rfk and @jrconlin to chat about this