1 files changed, 10 insertions, 0 deletions
diff --git a/README.md b/README.md
index edf48c1..edaf8f6 100644
--- a/README.md
+++ b/README.md
@@ -93,6 +93,16 @@ systemctl restart nginx/apache/…
 It should now be working.
+# Threat model
+- An attacker in possession of the very same file that a user wants to clean,
+        along with its names, can perform a denial of service by continually
+        requesting this file, and getting it before the user.
+- An attacker in possession of only the name of a file that a user wants to
+        clean can't perform a denial of service attack, since the path to download
+        the cleaned file is not only dependant of the name, but also the content.
+- The server should do its very best to delete files as soon as possible.
 # Licenses
 - mat2-web is under MIT

diff --git a/README.md b/README.md index edf48c1..edaf8f6 100644 --- a/README.md +++ b/README.md
@@ -93,6 +93,16 @@ systemctl restart nginx/apache/…
93		93
94	It should now be working.	94	It should now be working.
95		95
		96	# Threat model
		97
		98	- An attacker in possession of the very same file that a user wants to clean,
		99	along with its names, can perform a denial of service by continually
		100	requesting this file, and getting it before the user.
		101	- An attacker in possession of only the name of a file that a user wants to
		102	clean can't perform a denial of service attack, since the path to download
		103	the cleaned file is not only dependant of the name, but also the content.
		104	- The server should do its very best to delete files as soon as possible.
		105
96	# Licenses	106	# Licenses
97		107
98	- mat2-web is under MIT	108	- mat2-web is under MIT