| Commit message (Collapse) | Author | Age |
|---|
| ... | |
| |
|
|
|
|
|
|
|
|
|
| |
Simplifies code, uses less memory, and don't need to protect
against flooding generation of RequestIDs, since the server does not store
them at all.
Note that the RequestIDSecret is only stored in ram, so restarting the
server will invalidate any RequestIds given out before. It would be
possible now to store that on disk to avoid that problem, but probably not
worth it.
|
| | |
|
| |
|
|
|
|
|
|
| |
Once on the queue, requests should not need to contend with other requests
that are not on the queue, so added a fallback request bucket.
tokenBucketWait is not fair, so ensure FIFO processing of the queue by
using a FairRWLock.
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
Now caps total request rate even if attacker is willing to burn infinite
CPU on PoW.
|
| | |
|
| | |
|
| |
|
|
| |
This reverts commit 48ec718a6211a71ae0a796eb1c3a6ea091dc6e14.
|
| | |
|
| | |
|
| |
|
|
| |
keysafe does not run as root, so the normal ext2 disk reserve will do
|
| | |
|
| |
|
|
|
|
| |
This decreases the possible maximumStorageRate by half, down from
10 gb/month to 5 gb/month. Which is probably a tolerable amount for
many servers; that's 16 months to fill up a terabyte disk.
|
| |
|
|
|
|
|
| |
(down from 7 to 4)
This decreases the possible maximumStorageRate by half, down from
18 gb/month to 10 gb/month.
|
| | |
|
| | |
|
| |
|
|
|
| |
This avoids a 1s delay in requests, except when an attacker is flooding
them.
|
| | |
|
| | |
|
| |
|
|
| |
In this case, an empty string is hashed to generate the PoW.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Mashed up a argon2-based PoW with token buckets and bloom filters.
This is intended to prevent a few abuses including:
* Using a keysafe server for general file storage, by storing a whole
lot of chunks.
* An attacker guessing names that people will use, and uploading junk
to keysafe servers under those names, to make it harder for others to use
keysafe later.
* An attacker trying to guess the names used for objects on keysafe
servers in order to download them and start password cracking.
(As a second level of defense, since the name generation hash
is expensive already.)
Completely untested, but it builds!
This commit was sponsored by Andreas on Patreon.
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
Share download cannot be due to wrong password
|
| |
|
|
| |
controlling terminal and zenity was not installed.
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
| |
f2fa457a7e45721e94a3f5d0307faf874150cdb4 did in fact fix a laziness issue
in the benchmark. This explains why restore was taking so long, although
I need to re-run a real restore to double-check this.
|
| | |
|
| | |
|
