开发者

Hide my real ip address when i'm surfing a php page [closed]

问答 作者:
Closed. This question is off-topic. It is not currently accepting answers.

Want to improve this question? Update the question so it's on-topic for Stack Overflow.

Closed 12 years ago.

开发者_StackOverflow Improve this question

This php function return the real ip address of clients :

function getRealIpAddr()
{
    if (!empty($_SERVER['HTTP_CLIENT_IP']))   //check ip from share internet
    {
      $ip=$_SERVER['HTTP_CLIENT_IP'];
    }
    elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR']))   //to check ip is pass from proxy
    {
      $ip=$_SERVER['HTTP_X_FORWARDED_FOR'];
    }
    else
    {
      $ip=$_SERVER['REMOTE_ADDR'];
    }
    return $ip;
}

when i set a ip:port proxy for IE , this code still show my real ip and i don't know how can i hide my ip from this php code !!! (such as VPN mechanism)

This is not your fault. If you want to hide your real IP, you must find a real anonymous proxy (also called 'elite'). You can't change http headers to fake your ip - those headers (HTTP_X_FORWARDED_FOR in fact) are added on the fly by transparent proxy server.

When connecting by non-elite but normal anonymous proxy, there will be only one header saying that connection is forwarded, but will not reveal your real IP.

You can also use SOCKS proxy, which do not modify http headers, because they don't have specified protocol, only mediate in TCP connection.

Some proxies can send your IP in own-non-standard headers. If you want to be sure, that your IP is not given anywhere, you should write your own tester, which will parse all headers to find your exact IP.

Also remember, that not every proxy is safe, some of them could be setted up by hackers to catch a password, or changing your data on the fly.

All headers are forgable by clients. The end point of the socket is not forgable - but with facilities like tor you cannot rely on the data being in anyway accurate, never mind NAT.

Whatever you are trying to achieve, you should not rely on the information returned by the function. The only place where you should use it all is for indicative information across a large sample size (e.g. for GIS ip/address lookups).

You should certainly never, ever use this for authentication purposes.

What about using CURL and curl_setopt() with this option - CURLOPT_INTERFACE.

but this will not return data back to you and instead to the new IP address set.

继续阅读:hideipphpproxy

更多精彩内容

0

上一篇:

下一篇:

精彩评论

暂无评论...
登录 注册
Qedev.com
验证码 换一张
取 消

最新问答

问答排行榜

法律声明:本站内容均为网友上传,网站举办方负责审核和监督,

如存在版权或非法内容,欢迎举报,我们将尽快予以删除。

Copyright © 2018-2020 开发者. All rights reserved.

Powered by 开发者

ICP备案号: 京ICP备10032868号-9