MODiX icon indicating copy to clipboard operation
MODiX copied to clipboard
verified publisher icon discord-csharp

Change MODiX/Modix.Services/Moderation/AttachmentBlacklistBehavior.cs to a Whitelist

Open NinjaKitt3n opened this issue 6 years ago • 5 comments

Zero-Trust Principle -> Apply Exceptions is inherently more secure than Allow Everything -> Except

Therefore we should swap the blacklist behaviour to a whitelist behaviour.

CREDIT to : Rist for pointing it out.

NinjaKitt3n avatar Mar 13 '19 12:03 NinjaKitt3n

The obvious next question would be... what extensions should we whitelist?

Scott-Caldwell avatar Mar 13 '19 12:03 Scott-Caldwell

The obvious next question would be... what extensions should we whitelist?

I assume this would be a discussion better had in Discord and the output summary applied here? :)

NinjaKitt3n avatar Mar 13 '19 13:03 NinjaKitt3n

Anyone have any thoughts on this ?

NinjaKitt3n avatar Apr 21 '19 21:04 NinjaKitt3n

considering this really isn't a security feature, i think a whitelist + moderators is adequate. It's mostly intended to keep the most common dangerous files from being blindly downloaded and run on accident

Cisien avatar Apr 21 '19 21:04 Cisien

considering this really isn't a security feature, i think a whitelist + moderators is adequate. It's mostly intended to keep the most common dangerous files from being blindly downloaded and run on accident

Fair, feel free to close if desired.

NinjaKitt3n avatar May 01 '19 11:05 NinjaKitt3n

As part of a new effort to refocus on priorities, I will close this. If you feel this is imperative to the bot, a new issue can be opened to supersede this.

patrickklaeren avatar Mar 26 '24 14:03 patrickklaeren