-
Notifications
You must be signed in to change notification settings - Fork 39
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
IP Blacklist #11
Comments
I was going to say this shouldn't live in core and people should take care of that themselves, but then I realized that you cannot get the IP address of the user in e.g. the browser context. Is there a module that contains some well-known IPs that shouldn't be tracked like e.g. localhost, the Google/Bing/Yahoo bot, etc.? |
Here: http://www.iplists.com/ My only concern with using a static list, is that I think it might be unfair to block IPs like localhost out of the box. If I find this library and install it, I'm going to have expectations of seeing my page loads getting tracked (even if I don't want this in production). If I install it, load my page, and see no activity tracked; I'm going to assume that it's not working properly. It's probably a good idea to block IPs of web crawlers out of the box though. |
Let's check for |
bringing the conversation here. I think allowing some sort of extension module by the user would be ideal for this and any other situation that is general or unique to the user's needs. So the proposal is to allow the user to specify That module would be able to export any extension api that we would want configuration on. But for this and favicon issue we could allow them to export a |
another tool to help users filter https://referrerspamblocker.com/ they have a solid list of referrers that could be filtered or blacklisted |
Obviously this could be implemented in the client-side on a per-project basis, but I think it would be a decent idea to implement some sort of IP blacklisting system so that stats don't get bloated during development/QA.
Maybe something along the lines of providing a
.ipignore
file that follows the same general rules of.gitignore
files?Again, not sure if you're trying to keep this as micro as possible leaving things like this up to the individual developer. But seems like a feature that many could benefit from.
The text was updated successfully, but these errors were encountered: