Module com.renomad.minum

Package com.renomad.minum.security

package com.renomad.minum.security

Code for handling the harsh internet environment.

In the modern internet/web, sites undergo constant abuse. Scripts are run constantly by attackers to seek out security vulnerabilities.

Many websites mitigate this by hiring services to protect themselves, placing themselves in a more protected position one step back from the full internet.

This system was designed to be exposed out to the internet. To avoid some of the most obvious attacks, the system looks for patterns indicating as much. For example, there is no reason a user of the web application should need to access an endpoint called ".env", but many insecure sites will allow that file to be read, providing insight to attackers. Thus, attackers will often request that file. If we see that request, it is assumed we are getting a request from an attacker, and that ip address is put on a blacklist for a short time.

Related Packages

Package	Description
com.renomad.minum	Minum is a web library with all the components needed to build a web application, including a web server and a database.

Class	Description
ForbiddenUseException	This is thrown when the user action is prevented by a restriction we put on the system.
Inmate	Represents an inmate in our "jail".
ITheBrig	Monitors the inmates who have misbehaved in our system.
MinumSecurityException	A RuntimeException scoped to the security package
TheBrig	See ITheBrig
UnderInvestigation	Looking for bad actors in our system