Closed jcalfee closed 8 years ago
Wait, I see .. this is not IPv6, it is just the hex of the IPv4... Ok, I think we are safe. Never-mind.
It's ipchecker
related, yea.
Thanks using it, but it's lil' bit out-dated. PRs welcome. I'll be back soon on Github and my repos.
When I log the IP address here: https://github.com/tunnckoCore/express-better-ratelimit/blob/v1.1.2/index.js#L56
I see this value:
::ffff:127.0.0.1
Is is possible for an attacker to change there IPv6 part of the address above remotely and programmatically in effect bypassing the rate limiter?