[2734] in WWW Security List Archive
Re: who visited my page?
daemon@ATHENA.MIT.EDU (Steff Watkins)
Wed Aug 21 12:57:42 1996
From: Steff Watkins <Steff.Watkins@Bristol.ac.uk>
To: www-security@ns2.rutgers.edu
Date: Wed, 21 Aug 1996 16:13:01 +0100 (BST)
In-Reply-To: <199608210339.XAA02831@tristate.pgh.net> from "Josh Bettoni" at Aug 20, 96 11:39:11 pm
Errors-To: owner-www-security@ns2.rutgers.edu
Josh Bettoni wrote:
=>
=> Is there a way to log the ip addresses? or the e-mail addresses or
=>the people who visit your page?
Hi Josh,
yeah! One way I know of is to enable Server Side Includes and then add
the include that traps the 'REMOTE_ADDR' environment variable.
A 'typical' SSI would be:
<!--#echo var="REMOTE_ADDR" -->
which would put out the IP ADDRESS of the host that was executing the
browser which had just accessed that page.
You can also trap the IP NAME b doing the same thing, but substituting
'REMOTE_ADDR' with 'REMOTE_HOST'.
As for email addresses, that's a little more difficult... not because you
can't formulate one but because you cannot be certain that any formulated
address is valid for email receipt/delivery. The best way of doing this, I
have found, is to put a form on the webpage and ASK visitors for their
email address.
For an example of what sort of variables you can trap from a browser, take
a look at
http://sw.cse.bris.ac.uk/public/env-vars.html
Hope this helps,
Steff
: Steff Watkins, General Computer-type being
: University of Bristol, Clifton, Bristol, AVON, BS8 1TH, UK
:
: RFC-822 : Steff.Watkins@bris.ac.uk
: X-400 : /G=Steff/S=Watkins/O=Bristol/PRMD=UK.AC/ADMD= /C=GB/
: Phone: +44 177 287869 (external) 3046 / 7651 (internal)
