diff --git a/internal/home/authhttp.go b/internal/home/authhttp.go
index 68c7b5c9..b8c7b551 100644
--- a/internal/home/authhttp.go
+++ b/internal/home/authhttp.go
@@ -109,8 +109,8 @@ func (web *webAPI) handleLogin(w http.ResponseWriter, r *http.Request) {
 	}
 
 	var remoteIP string
-	// realIP cannot be used here without taking TrustedProxies into account due
-	// to security issues.
+	// The real IP address of the client [realIP] cannot be used here without
+	// taking trusted proxies into account due to security issues:
 	//
 	// See https://github.com/AdguardTeam/AdGuardHome/issues/2799.
 	if remoteIP, err = netutil.SplitHost(r.RemoteAddr); err != nil {
@@ -489,8 +489,8 @@ func (mw *authMiddlewareDefault) userFromRequestBasicAuth(
 	}
 
 	var remoteIP string
-	// realIP cannot be used here without taking TrustedProxies into account due
-	// to security issues.
+	// The real IP address of the client [realIP] cannot be used here without
+	// taking trusted proxies into account due to security issues:
 	//
 	// See https://github.com/AdguardTeam/AdGuardHome/issues/2799.
 	if remoteIP, err = netutil.SplitHost(r.RemoteAddr); err != nil {