sliver/akkoma
1
0
Fork 0
forked from AkkomaGang/akkoma
Code Pull requests Projects Activity
akkoma/docs/docs/configuration
History
Oneric d6d838cbe8 StealEmoji: check remote size before downloading 
To save on bandwith and avoid OOMs with large files.
Ofc, this relies on the remote server
 (a) sending a content-length header and
 (b) being honest about the size.

Common fedi servers seem to provide the header and (b) at least raises
the required privilege of an malicious actor to a server infrastructure
admin of an explicitly allowed host.

A more complete defense which still works when faced with
a malicious server requires changes in upstream Finch;
see https://github.com/sneako/finch/issues/224
2024-03-18 22:33:10 -01:00
..
integrations varnish config/docs (#342) 2022-12-05 13:39:27 +00:00
optimisation Disable busy waits in the default OTP vm.args configuration. 2024-02-17 13:21:56 +01:00
auth.md Documentation updates for stable release (#73) 2022-07-15 12:27:16 +00:00
cheatsheet.md StealEmoji: check remote size before downloading 2024-03-18 22:33:10 -01:00
custom_emoji.md Add docs about emoji stealing (#364) 2022-12-30 02:58:06 +00:00
frontend_management.md Fix typo in frontend management docs 2023-08-04 22:34:39 +01:00
hardening.md Drop media base_url default and recommend different domain 2024-03-18 22:33:10 -01:00
how_to_serve_another_domain_for_webfinger.md Support reaching user@sub.domain.tld at user@domain.tld (#134) 2022-08-02 13:54:22 +00:00
howto_database_config.md Documentation updates for stable release (#73) 2022-07-15 12:27:16 +00:00
howto_mediaproxy.md Drop media proxy same-domain default for base_url 2024-03-18 22:33:10 -01:00
howto_proxy.md Documentation updates for stable release (#73) 2022-07-15 12:27:16 +00:00
howto_search_cjk.md Documentation updates for stable release (#73) 2022-07-15 12:27:16 +00:00
howto_set_richmedia_cache_ttl_based_on_image.md Documentation updates for stable release (#73) 2022-07-15 12:27:16 +00:00
howto_theming_your_instance.md correct link 2023-11-02 11:40:19 +00:00
i2p.md HTTP header improvements (#294) 2022-11-20 21:20:06 +00:00
mrf.md Add background_removal to SimplePolicy MRF 2024-02-16 16:36:45 +01:00
onion_federation.md HTTP header improvements (#294) 2022-11-20 21:20:06 +00:00
postgresql.md Changes to pgtune docs 2023-01-26 10:11:29 +01:00
search.md Fix false error in meilisearch index (#221) 2022-09-20 10:36:21 +00:00
static_dir.md Document custom.css 2022-12-07 11:45:53 +00:00
storing_remote_media.md match nginx config to install config and extend docs a bit 2023-02-26 23:58:55 +01:00