On Wed, 9 Jun 2004, Cameron Kerr wrote:
On Wed, Jun 09, 2004 at 12:48:21PM +1200, Juha Saarinen wrote:
True, and if not carefully configured, transparent cacheing can have interesting side-effects like anonymising posters of Christmas Island material, as I wrote about on http://www.nzherald.co.nz/business/businessstorydisplay.cfm?storyID=3559088
An interesting point. Is this not the X-Forwarded-For header is for?
Generally, yes. We make sure to pass the X-F-F header, but unfortunately most software / webmasters don't look at or log it, which is somewhat stupid. On the other hand, it can make things vulnerable to abuse, as evidenced by some people using the header to stuff online votes by just generating fake headers.
What other methods are used in the industry are used by ISPs to prevent this sort of abuse?
logging cache accesses I guess would be the other option, but how many ISPs actually do this? It's a _lot_ of data to log, and then to keep.. aj -- Network Operations || noc. +64.9.915.1825 Maxnet || cell. +64.21.639.706