Detect clients with Proxy Servers via PHP [duplicate]

php proxy

Use the following 2 solutions in PHP. // method 1 = quick but does not work with anonymous proxies

    $proxy_headers = array(
        'HTTP_VIA',
        'HTTP_X_FORWARDED_FOR',
        'HTTP_FORWARDED_FOR',
        'HTTP_X_FORWARDED',
        'HTTP_FORWARDED',
        'HTTP_CLIENT_IP',
        'HTTP_FORWARDED_FOR_IP',
        'VIA',
        'X_FORWARDED_FOR',
        'FORWARDED_FOR',
        'X_FORWARDED',
        'FORWARDED',
        'CLIENT_IP',
        'FORWARDED_FOR_IP',
        'HTTP_PROXY_CONNECTION'
    );
    foreach($proxy_headers as $x){
        if (isset($_SERVER[$x])) die("You are using a proxy!");
    }

// Method 2 = portscan back to the origin IP at the normal proxy ports used.

    $ports = array(8080,80,81,1080,6588,8000,3128,553,554,4480);
    foreach($ports as $port) {
         if (@fsockopen($_SERVER['REMOTE_ADDR'], $port, $errno, $errstr, 30)) {
              die("You are using a proxy!");
         }
     }

You can't detect that unless they pass on special headers which explictly mention it like X-Forwarded-For or something.

As far as I know you have to use a blacklist. Users who use putty portforwarding, VPN or other more sophisticated methods are undetactable as they behave exactly like normal users.

Related

In asp.net mvc is it possible to make a generic controller?
Convert double to string C++? [duplicate]
Reason for using array notation when defining AngularJS Controller
how to show datepicker calendar on datefield
Android Google+ integration - repeated UserRecoverableAuthException
How to align a pointer in C
WPF Binding to local variable
Use character string as function argument
Fill in null with previously known good value with pyspark
Switching to Python 3 causing UnicodeDecodeError
How to prevent user to enter text in textarea after reaching max character limit
Where does a JavaScript closure live?