PC-Admin/redlight
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

update technical again

Browse Source
This commit is contained in:
PC-Admin 2023-08-11 04:39:04 +08:00
parent 1a86c0820b
commit 7479a124b3
1 changed files with 6 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
technical_spec.md
View File

@ -38,10 +38,11 @@ This creates a chain of trust where each party using this system must be account
## Securing the Redlight List
The following methods will be used to secure the redlight list:
- Avoid writing the redlight list to disk, redlight servers will simply pull the latest copy and store it in memory only.
- Whitelisting clients, redlight servers will only serve approved clients.
- Ratelimiting the amount of requests, if a client is requesting too many rooms in a specified timeframe their access will be automatically cut-off, forcing them to ask their redlight server to re-enable them.
- Ratelimiting the amount of hits, if a client is finding too many abusive rooms in a specified timeframe their access will be automatically cut-off, forcing them to ask their redlight server to re-enable them.
Avoid writing the redlight list to disk, redlight servers will simply pull the latest copy and store it in memory only.
Whitelisting clients, redlight servers will only serve approved clients.
Ratelimiting the amount of requests, if a client is requesting too many rooms in a specified timeframe their access will be automatically cut-off, forcing them to ask their redlight server to re-enable them.
Ratelimiting the amount of hits, if a client is finding too many abusive rooms in a specified timeframe their access will be automatically cut-off, forcing them to ask their redlight server to re-enable them.
# Other Design Goals
@ -61,7 +62,7 @@ All documented endpoints require a bearer token supplied in the `Authorization`
### **PUT** `/_matrix/loj/v1/abuse_lookup`
The `abuse_lookup` endpoint returns if the supplied `room_id` is reported to contain `csam` in rdlist. The endpoint will
The `abuse_lookup` endpoint returns if the supplied `room_id` is reported to contain a filtered tag in rdlist. The endpoint will
return either `200 OK` to signify a match or `204 No Content` to signify no match.
- `room_id_hash:` String. A valid Room ID that has been hashed twice with sha256