tags:

views:

106

answers:

8
+2  Q: 

Why would I need to save IPs of my web site users?

Should I save this information in the database?
For example when users sign up or log in?

+1  A: 

Most web servers already log this kind of information in their log file.

You may want to log the IP in order to match up the web logs with your user via the IP (and time).

This will not be 100% correct, as IP addresses can be shared (for example behind a NAT firewall).

Should you do this? It depends. Do you need this functionality? Depending on the answer to this question, you should make your decision.

Oded  2010-03-01 15:23:05
+3  A: 

Unless you're tracking the users coming to your site, limitting access based on IP address, or providing geographical services (based on IP lookup)...then you don't need to save this information at all.

Justin Niessner  2010-03-01 15:24:50
+2  A: 

Some sites, like banks, will use this info as a security measure. If you try to sign in again from another IP address, you will be asked to confirm your identity.

Matt Dearing  2010-03-01 15:25:04
+2  A: 
  1. Rate Limiting (to protect your resources eg. API)
  2. Security (for auditing reasons - match IP with user credentials)
  3. Geolocation based services (if not now, maybe in the future?)
  4. Data for future load-balancing functionality
jldupont  2010-03-01 15:26:57
+2  A: 

If you were implementing an auto-sign on feature than you are likely to store this (alongside checking for data in a cookie) to attempt to verify that the computer is the correct one for the user, before auto-logging them on.

Ali Lown  2010-03-01 15:28:15
+1  A: 

IP bans for misbehavior. About the only solid reason for collecting the raw IP addresses (and not "cooked" data like geolocation or ISP). If you get several similar ban reasons for new accounts, check the IPs they logged in from, and if they are the same or very similar you may want to block on per-IP basis.

SF.  2010-03-01 15:28:24
+1  A: 

You should save IPs of users only when you have a poll or rating system where anyone can vote once. Also you could store IP data to check for multiple log in sessions so people can sign out other active sessions from your site, like in GMail.

Harmen  2010-03-01 15:28:28
+1  A: 

We do a site where the "authorities" of our country often call in and what to have IP addresses from a specific user because of copyright infringements or other lawsuit reasons. This might be country specific but for us, this is a reason to keep some IP addresses of our users.

Malax  2010-03-01 15:31:17

related questions

What language do you use for Postgresql triggers and stored procedures?
Are Multiple DataContext classes ever appropriate?
Which tools do people use to create Data Dictionaries?
Any experiences with Protocol Buffers?
Mechanisms for tracking DB schema changes
How big can a MySQL database get before performance starts to degrade.
How do I index a database field
How does database indexing work?
How do I connect to a database and loop over a recordset in C#?
Editing database records by multiple users
Object Oriented vs Relational Databases
VFP .NET OLEdb provider does not work in Win 64-Bits. Help
Embedded Database for .net that can run off a network
Connect PHP to an AS/400
Swap unique indexed column values in database.
cx_Oracle - what is the best way to iterate over a result set?
cx_Oracle - How do I access Oracle from Python?
.NET Migrations Engine
Is there a version control system for database structure changes?
SQLite and XSD
How do I version my MS SQL database in SVN?
XSD DataSets and ignoring foreign keys
Flat File Databases in PHP
Throw Error In MySQL Trigger
Binary Data in MySQL