Change the random content path each time new files are shared

onionshare / onionshare-android

Android version of OnionShare

https://onionshare.org/

GNU General Public License v3.0

141 stars 16 forks source link

Change the random content path each time new files are shared #121

Closed akwizgran closed 3 months ago

akwizgran commented 3 months ago

This protects against a potential attack where the attacker controls another app on the same device as OnionShare, and has also received the URL of one of the user's previous shares. The attacker would then be able to reuse the random content path from the known URL to download future shares via the other app.

Fixes #120

grote commented 3 months ago

Nice work and good to see you getting comfortable in Kotlin :P