Xataface Forums

Put a face on your database
http://xataface.com/forum/

Possible hacking attempt -error_log

http://xataface.com/forum/viewtopic.php?f=4&t=7055

Page 1 of 1

Possible hacking attempt -error_log

PostPosted: Wed Nov 28, 2012 7:31 pm
by mermentau
I have the latest stable release version and my error_log in the application gets lots of this error:
Session address does not match the remote address. Possible hacking attempt. Session address was '', User address was '::ffff:453b:2840'
I don't really suspect hacking and am guessing it's some kind of config error. I've done a good bit of searching and found nothing relating.

Re: Possible hacking attempt -error_log

PostPosted: Fri Nov 30, 2012 4:54 am
by shannah
Xataface checks to make sure that multiple requests for the same session come from the same IP address. Unfortunately it seems to be broken with IPv6..

You can disable this (and I recommend you do until it is fixed) by adding the following to the beginning of your conf.ini file:
Code: Select all
disable_session_ip_check=1


-Steve

Re: Possible hacking attempt -error_log

PostPosted: Fri Nov 30, 2012 3:17 pm
by mermentau
That sounds easy enough. Thanks
All times are UTC - 7 hours
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
http://www.phpbb.com/