2013-05-24, 10:26 PM
2013-05-24, 10:35 PM
Do you have the "Scrutinize User's IP address?" option enabled? It allows users to spoof their IP address should they set the X-Forwarded-For header value themselves.
2013-05-24, 10:36 PM
(2013-05-24, 10:35 PM)Nathan Malcolm Wrote: [ -> ]Do you have the "Scrutinize User's IP address?" option enabled? It allows users to spoof their IP address should they set the X-Forwarded-For header value themselves.
I do have it enabled, shouldn't I?
2013-05-24, 10:54 PM
Do you have a reason to use it? Are you using CloudFlare or have a load balancer in front of your site?
2013-05-24, 11:01 PM
(2013-05-24, 10:54 PM)Nathan Malcolm Wrote: [ -> ]Do you have a reason to use it? Are you using CloudFlare or have a load balancer in front of your site?
I do not use Cloudflare and as for the second question I am not sure.
To be honest I don't even remember when I turned it on or why.