Bug in wp-fail2ban.php | WordPress.org

Resolved alekc
(@alekc)

10 years, 8 months ago

It shouldn’t be
if (array_key_exists($_SERVER,'HTTP_X_FORWARDED_FOR')) {

but

if (array_key_exists('HTTP_X_FORWARDED_FOR',$_SERVER)) {

Also, i would suggest to force checking of HTTP_X_FORWARDED_FOR in case $ip == private network (i.e. 192.168.x.x, 10.x.x.x.

http://wordpress.org/plugins/wp-fail2ban/

Viewing 1 replies (of 1 total)

Plugin Author invisnet
(@invisnet)

10 years, 8 months ago

Thanks for that – it’s fixed in 2.0.1.

As for forcing a check on private networks, that needs a lot more thought – I don’t want to break things for people running WP locally.

Viewing 1 replies (of 1 total)

The topic ‘Bug in wp-fail2ban.php’ is closed to new replies.

In: Plugins
1 reply
2 participants
Last reply from: invisnet
Last activity: 10 years, 8 months ago
Status: resolved