Discourage the use of the config setting tracking_requests_require_authentication=0
|Reported by:||matt||Owned by:|
|Priority:||normal||Milestone:||1.12.x - Piwik 1.12.x|
WE should make it clear that tracking_requests_require_authentication should not be used on public facing Piwik servers. It would allow anyone to push data with a custom date in the past or future, or create artificial visits using custom IPs. This is a security issue to use this setting on publicly available servers.