// Mail content
$mail = "Attack detected:
-----------------------------------------------------
-Remote-IP : ".$_SERVER['REMOTE_ADDR']."
+Remote-IP : ".determineRealRemoteAddress()."
User-Agent : ".$_SERVER['HTTP_USER_AGENT']."
Request-string : ".$_SERVER['QUERY_STRING']."
Filtered string : ".$GLOBALS['checkworm']."
function crackerTrackerSendMail ($mail) {
// Construct dummy array
$rowData = array(
- 'remote_addr' => $_SERVER['REMOTE_ADDR'],
+ 'remote_addr' => determineRealRemoteAddress(),
'check_worm' => $GLOBALS['checkworm'],
'server_name' => $_SERVER['SERVER_NAME']
);
// Mail text
$mail = "POST-Attack detected:
-----------------------------------------------------
-Remote-IP : ".$_SERVER['REMOTE_ADDR']."
+Remote-IP : ".determineRealRemoteAddress()."
User-Agent : ".$_SERVER['HTTP_USER_AGENT']."
Request-string : ".$_SERVER['QUERY_STRING']."
Filtered string : ".$GLOBALS['checkworm']."
// Aquire database link
aquireCrackerTrackerDatabaseLink();
+ // By default no proxy is used
+ $proxyUsed = 'N';
+
+ // Did the attacker use a proxy?
+ if (isProxyUsed()) {
+ // Set it
+ $proxyUsed = 'Y';
+ } // END - if
// Prepare array for database insert
$rowData = array(
- 'remote_addr' => $_SERVER['REMOTE_ADDR'],
+ 'remote_addr' => determineRealRemoteAddress(),
'user_agent' => $_SERVER['HTTP_USER_AGENT'],
'get_data' => $_SERVER['QUERY_STRING'],
'post_data' => $GLOBALS['post_track'],
'check_post' => $GLOBALS['check_post'],
'server_name' => $_SERVER['SERVER_NAME'],
'script_name' => $_SERVER['SCRIPT_NAME'],
- 'referer' => $_SERVER['HTTP_REFERER']
+ 'referer' => $_SERVER['HTTP_REFERER'],
+ 'proxy_used' => $proxyUsed
);
// Insert the array in database