PC-Admin/redlight
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

update technical again

Browse Source
This commit is contained in:
PC-Admin 2023-08-11 04:39:04 +08:00
parent 1a86c0820b
commit 7479a124b3
1 changed files with 6 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
technical_spec.md
View File

@ -38,10 +38,11 @@ This creates a chain of trust where each party using this system must be account
## Securing the Redlight List ## Securing the Redlight List
The following methods will be used to secure the redlight list: The following methods will be used to secure the redlight list:
- Avoid writing the redlight list to disk, redlight servers will simply pull the latest copy and store it in memory only.
- Whitelisting clients, redlight servers will only serve approved clients. Avoid writing the redlight list to disk, redlight servers will simply pull the latest copy and store it in memory only.
- Ratelimiting the amount of requests, if a client is requesting too many rooms in a specified timeframe their access will be automatically cut-off, forcing them to ask their redlight server to re-enable them. Whitelisting clients, redlight servers will only serve approved clients.
- Ratelimiting the amount of hits, if a client is finding too many abusive rooms in a specified timeframe their access will be automatically cut-off, forcing them to ask their redlight server to re-enable them. Ratelimiting the amount of requests, if a client is requesting too many rooms in a specified timeframe their access will be automatically cut-off, forcing them to ask their redlight server to re-enable them.
Ratelimiting the amount of hits, if a client is finding too many abusive rooms in a specified timeframe their access will be automatically cut-off, forcing them to ask their redlight server to re-enable them.
# Other Design Goals # Other Design Goals
@ -61,7 +62,7 @@ All documented endpoints require a bearer token supplied in the `Authorization`
### **PUT** `/_matrix/loj/v1/abuse_lookup` ### **PUT** `/_matrix/loj/v1/abuse_lookup`
The `abuse_lookup` endpoint returns if the supplied `room_id` is reported to contain `csam` in rdlist. The endpoint will The `abuse_lookup` endpoint returns if the supplied `room_id` is reported to contain a filtered tag in rdlist. The endpoint will
return either `200 OK` to signify a match or `204 No Content` to signify no match. return either `200 OK` to signify a match or `204 No Content` to signify no match.
- `room_id_hash:` String. A valid Room ID that has been hashed twice with sha256 - `room_id_hash:` String. A valid Room ID that has been hashed twice with sha256