科技改变生活-雨落星辰 - 所有的伟大,都源于一个勇敢的开始

    最新消息:雨落星辰是一个专注网站SEO优化、网站SEO诊断、搜索引擎研究、网络营销推广、网站策划运营及站长类的自媒体原创博客
    你的位置: 首页>programmer>javascript - Can req.ip be faked in Express.js? - Stack Overflow

    javascript - Can req.ip be faked in Express.js? - Stack Overflow

    programmeradmin1浏览0评论

    I am trying to implement some anti-spamming mechanism into my server. I need to know whether req.ip can be faked by the remote hacker in Express.js. Could someone please confirm this with me?

    I am trying to implement some anti-spamming mechanism into my server. I need to know whether req.ip can be faked by the remote hacker in Express.js. Could someone please confirm this with me?

    • javascript
    • node.js
    • express
    • ip
    • spam-prevention
    Share Improve this question asked Jul 4, 2018 at 4:47 Chong Lip PhangChong Lip Phang 9,2797 gold badges75 silver badges114 bronze badges
    Add a ment  | 

    1 Answer 1

    Reset to default 6

    Yes, it can be faked. request.ip getting it's value from the left most entry of the X-Forwarded-For header, which can be faked.

    Express docs: https://expressjs./en/api.html#req.ip

    与本文相关的文章

    发布评论

    评论列表(0)

    1. 暂无评论