124749

: Clarifying which services require external access.

: Providing administrators with better options to disable external checks in air-gapped or high-security environments. Best Practices for LimeSurvey Admins

If you are managing a LimeSurvey instance, here are a few steps to ensure your setup remains secure: 124749

The number appears as a development ticket for LimeSurvey , an open-source online survey application. The issue specifically addresses a security and privacy concern where the software was found to be accessing external IP addresses on admin login .

Users noticed that upon logging into the LimeSurvey admin panel, the application initiated an external request. In environments with strict firewall rules or high-security requirements, this "phone home" behavior can be a red flag, as it potentially leaks server information or exposes the instance to external tracking. Why does this matter? : Clarifying which services require external access

: Use the config.php file to restrict update checks if your server should not have internet access.

The development team tracked this behavior to specific checks within the admin interface—often related to update notifications or plugin verification. Following the discussion in Ticket #124749, improvements were made to: The issue specifically addresses a security and privacy

Development. LimeSurvey accessing external ip on admin login. LimeSurvey forums