diff --git a/technical_spec.md b/technical_spec.md index c129616..2b394fe 100644 --- a/technical_spec.md +++ b/technical_spec.md @@ -38,10 +38,11 @@ This creates a chain of trust where each party using this system must be account ## Securing the Redlight List The following methods will be used to secure the redlight list: - - Avoid writing the redlight list to disk, redlight servers will simply pull the latest copy and store it in memory only. - - Whitelisting clients, redlight servers will only serve approved clients. - - Ratelimiting the amount of requests, if a client is requesting too many rooms in a specified timeframe their access will be automatically cut-off, forcing them to ask their redlight server to re-enable them. - - Ratelimiting the amount of hits, if a client is finding too many abusive rooms in a specified timeframe their access will be automatically cut-off, forcing them to ask their redlight server to re-enable them. + + Avoid writing the redlight list to disk, redlight servers will simply pull the latest copy and store it in memory only. + Whitelisting clients, redlight servers will only serve approved clients. + Ratelimiting the amount of requests, if a client is requesting too many rooms in a specified timeframe their access will be automatically cut-off, forcing them to ask their redlight server to re-enable them. + Ratelimiting the amount of hits, if a client is finding too many abusive rooms in a specified timeframe their access will be automatically cut-off, forcing them to ask their redlight server to re-enable them. # Other Design Goals @@ -61,7 +62,7 @@ All documented endpoints require a bearer token supplied in the `Authorization` ### **PUT** `/_matrix/loj/v1/abuse_lookup` -The `abuse_lookup` endpoint returns if the supplied `room_id` is reported to contain `csam` in rdlist. The endpoint will +The `abuse_lookup` endpoint returns if the supplied `room_id` is reported to contain a filtered tag in rdlist. The endpoint will return either `200 OK` to signify a match or `204 No Content` to signify no match. - `room_id_hash:` String. A valid Room ID that has been hashed twice with sha256