You can clone with
HTTPS or Subversion.
On the PHP side, we might see:
$_SERVER['HTTP_X_FORWARDED_FOR'] contains "A.B.C.D, E.F.G.H"
$_SERVER['REMOTE_ADDR'] also contains "E.F.G.H".
Propose: modify getLastElementFromList() to skip over IP that duplicates REMOTE_ADDR.
(In ) fixes #1920 - also removes deprecated getFirstElementFromList (formerly getFirstIpFromList)