#What exactly do you want to attack? Determining the real source of the IP #HTTP request? I don't think this is at all possible, and if you have a #fair amount of success, it will not be total. At the very best you will #be in a cat-and-mouse game of plugging up holes. #
Yeah, determining the real source IP of an HTTP request is what I need. We really just need to get the IP address since the targetting is done by a simple API that is backed by a database maintained by the geotargetting service provider -- they actually have a group that verifies IP information with approximated geographical local, and provides database update to customers like us. >From my experience, most geotargetting services can pinpoint an IP at the city level. #Remember that in squid it is totally optional to insert an #X-Forwarded-For, and X-Client-IP. If a client wants to be totally #anonymous, he can configure his squid/firewall to function as such. # That's the initial solution I've thought of.. but as we've found out (which you pointed out too), the header fields are not guaranteed which makes the solution a half-baked one. Thanks, jeff -- -- Jeff Gutierrez Pinoy Ako! May reklamo? Mapua Online! http://www.mapua.org http://www.mapua.com http://www.mapua.net Intertainer, Entertainment On Demand http://www.intertainer.tv _ Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] To subscribe to the Linux Newbies' List: send "subscribe" in the body to [EMAIL PROTECTED]
