dg
commented
9 years ago This seems like security hole, because attacker can spoof HTTP header x-forwarded-for.
Closed JakubSvestka closed 9 years ago
dg
commented
9 years ago This seems like security hole, because attacker can spoof HTTP header x-forwarded-for.
fprochazka
commented
9 years ago @kuba1999 using the new method with cookie is more secure than IP-only check.
JakubSvestka
commented
9 years ago ok. Thanks.
http://forum.nette.org/cs/21450-nedostavam-skutecnou-ip-adresu