forgery

what is the use of anti-forgery token salt ?

in asp.net mvc 1.0, there is a new feature for handling cross site request forgery security problem: <%= Html.AntiForgeryToken() %> [ValidateAntiForgeryToken] public ViewResult SubmitUpdate() { // ... etc } and i found the token generated in html form keep changing every time a new form is rendered. I want to know how these token...

Detect forged IP address?

How do you detect if the IP address for data received via a web form has come from a spoofed IP address? If detection is possible in PHP, is there a library that will also attempt to find the real IP address? ...