echoip icon indicating copy to clipboard operation
echoip copied to clipboard

Published 20 hours ago verified publisher icon mpolden

New security measure preventing IP return

Open Justinzobel opened this issue 2 years ago • 7 comments

When using via curl I got ifconfig.co needs to review the security of your connection before proceeding. among other HTML returned instead of my IP.

Justinzobel avatar Nov 30 '22 03:11 Justinzobel

I am having the same issue. Looks like Cloudflare is causing it. If I call https://ifconfig.co/country-iso from my site hosted on Netlify, instead of returning the country ISO value it returns this HTML code: Screen Shot 2022-11-30 at 2 10 19 PM

It was first noticed on one of my sites around 17 November 2022.

shawnflanagan avatar Nov 30 '22 20:11 shawnflanagan

I'm seeing this as well. I want to add that on my network there is only one service polling for IP changes, once every two minutes. This is within the requested limit of 1 request per minute described on the website.

cyounkins avatar Dec 11 '22 00:12 cyounkins

Seeing the same issue while running the command from the front page.

$ curl -I ifconfig.co/
HTTP/1.1 503 Service Temporarily Unavailable
Date: Thu, 15 Dec 2022 18:48:51 GMT
Content-Type: text/html; charset=UTF-8
Connection: close
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j1JjqfAnG4NwXMMxSN7hexCkfEaGYOqPXwH%2BRuZrXW5BH9CwQCXmGK9A8ugl3PUqWA032TM0vw5av9DEM3aHm6pKR4AgbUOfJksTKgcmX%2BFbytWcqXKSEahdfZlyJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77a15b19cea53711-MIA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

Alternative: dig +short txt ch whoami.cloudflare @1.0.0.1

gtirloni avatar Dec 15 '22 18:12 gtirloni

I just noticed the same issue on an EC2 instance. I suspect this service is probably provided for free, so I can't imagine there's be much appetite for disabling captcha.

Alternative: dig +short txt ch whoami.cloudflare @1.0.0.1

Nice one, thanks!

Another alternative (using https, in case port 53 is blocked):

curl api.ipify.org

bennettp123 avatar Jan 09 '23 04:01 bennettp123

Yes, ifconfig.co is worthless via curl, but api.ipify.org works fine!

hydrargyrum avatar Jan 21 '23 10:01 hydrargyrum

It is just a security setting that needs to be changed on the CloudFlare account running ifconfig.co. I setup ipcfg.co as another. Though other than the front end its entirely rewritten to just be a CloudFlare Worker.

TheKigen avatar Feb 10 '23 16:02 TheKigen

Another alternative for curl and tor users

curl ifconfig.la

ifconfigla avatar Aug 14 '23 06:08 ifconfigla