Author: astmbio
Description:
It is a serious privacy flaw to leave ip addresses available where anyone can see them, for example when
viewing a documents or users history. I also know that encrypting them is not enough, so I am proposing that
instead of displaying IP adresses as a unique marker for tracking vandels, that wikipedia when sending ip
addresses to a ciient machine first encrypts the ip address. if a admin or bureaucrat needs to perform
administrative action or other tasks as needed, that the server will decrypt the resulting GET or POST parameters.
Version: unspecified
Severity: critical