Oneric
d6d838cbe8
To save on bandwith and avoid OOMs with large files. Ofc, this relies on the remote server (a) sending a content-length header and (b) being honest about the size. Common fedi servers seem to provide the header and (b) at least raises the required privilege of an malicious actor to a server infrastructure admin of an explicitly allowed host. A more complete defense which still works when faced with a malicious server requires changes in upstream Finch; see https://github.com/sneako/finch/issues/224 |
||
---|---|---|
.. | ||
activity_pub | ||
mrf | ||
object_validator | ||
object_validators | ||
side_effects | ||
views | ||
activity_pub.ex | ||
activity_pub_controller.ex | ||
builder.ex | ||
internal_fetch_actor.ex | ||
mrf.ex | ||
object_validator.ex | ||
pipeline.ex | ||
publisher.ex | ||
relay.ex | ||
side_effects.ex | ||
transmogrifier.ex | ||
utils.ex | ||
visibility.ex |