Add a small threat model

2025-02-23 16:49:59 -05:00 · 2019-02-22 21:20:51 +01:00 · 2019-02-22 21:20:51 +01:00 · f436da0539
commit f436da0539
parent aee0940b51
1 changed files with 10 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -93,6 +93,16 @@ systemctl restart nginx/apache/…

 It should now be working.

+# Threat model
+
+- An attacker in possession of the very same file that a user wants to clean,
+	along with its names, can perform a denial of service by continually
+	requesting this file, and getting it before the user.
+- An attacker in possession of only the name of a file that a user wants to
+	clean can't perform a denial of service attack, since the path to download
+	the cleaned file is not only dependant of the name, but also the content.
+- The server should do its very best to delete files as soon as possible.
+
 # Licenses

 - mat2-web is under MIT