From f436da05399199af59ff074e3450c584f35aa7e0 Mon Sep 17 00:00:00 2001 From: jvoisin Date: Fri, 22 Feb 2019 21:20:51 +0100 Subject: [PATCH] Add a small threat model --- README.md | 10 ++++++++++ 1 file changed, 10 insertions(+) diff --git a/README.md b/README.md index edf48c1..edaf8f6 100644 --- a/README.md +++ b/README.md @@ -93,6 +93,16 @@ systemctl restart nginx/apache/… It should now be working. +# Threat model + +- An attacker in possession of the very same file that a user wants to clean, + along with its names, can perform a denial of service by continually + requesting this file, and getting it before the user. +- An attacker in possession of only the name of a file that a user wants to + clean can't perform a denial of service attack, since the path to download + the cleaned file is not only dependant of the name, but also the content. +- The server should do its very best to delete files as soon as possible. + # Licenses - mat2-web is under MIT