It is possible to use matrix network to mirror one file on each instance #1938
Comments
|
This comment was originally posted by @neilalexander at matrix-org/dendrite#1938 (comment). Ultimately this is working as intended. The media API is not aware of room memberships or resident servers. It’s also not so much that your media is being proactively replicated to other servers when it is first uploaded, but rather that those servers are seeking out the location of the media from the origin server in the URL when you ask them to. |
|
This comment was originally posted by @MrCyjaneK at matrix-org/dendrite#1938 (comment). And it isn't viewed as an issue? I know that it isn't send to the whole federation at once, but somebody with list of all servers could just use them as a mirror for a file... Are there any plans to implement some kind of authentication before allowing to access |
|
This comment was originally posted by @kegsay at matrix-org/dendrite#1938 (comment). This isn't a Dendrite-specific issue. https://github.com/matrix-org/matrix-doc/issues/701 See also: https://github.com/matrix-org/synapse/issues/2150 |
This issue was originally created by @MrCyjaneK at matrix-org/dendrite#1938.
Background information
c6acb94af4bc88eb999e56da4f6e0132438cb50aPolylithPostgresnogo version:go1.16.4 linux/amd64Description
It is possible to use my instance, to mirror content of other instances (and vice-versa). I've sent an image, a simple, unencrypted image, from
@cyjan:mrcyjanek.netto a small group (with users from mrcyjanek.net, matrix.org and t2bot.io). This group is private.Here is source of this message:
{ "content": { "body": "image.png", "info": { "h": 85, "mimetype": "image/png", "size": 2078, "thumbnail_info": { "h": 85, "mimetype": "image/png", "size": 2704, "w": 118 }, "thumbnail_url": "mxc://mrcyjanek.net/dc1e9f9e95ea2de764fe8f9ce8c2b7e86af560477cbdebe13e87245c3ad09830", "w": 118 }, "msgtype": "m.image", "url": "mxc://mrcyjanek.net/c5b45a1748453dfca594c237a023debd0c64ffe0f597bb3dadce7dcb83359e31" }, "event_id": "$5A6qfTV7eaegMCtyG2AVDer7yfl-_YhmY-eqQBzmmFM", "origin_server_ts": 1627160326464, "sender": "@cyjan:mrcyjanek.net", "type": "m.room.message", "unsigned": { "transaction_id": "m1627160325134.40" }, "room_id": "!DTDvPmpFDiacEsAsYt:matrix.org" }And I can access that image by these links:
That's all fine - but why is my image also being sent to other homeservers?
Steps to reproduce
Expected result
matrix.org, mrcyjanek.net and t2bot.io should only reply to this request, and other homeservers, which don't participate in this chat should ignore this request, since this group is private they shouldn't be able to access this image.
p.s. is it okay that this link just work for one-to-one chats and private groups? Shouldn't it require some form of authentication? I know that this issue doesn't happen with E2EE chat, but still private group should be private.
The text was updated successfully, but these errors were encountered: