73219f38ce
Fix a couple security issues related to dmail permalinks. Dmails have a permalink that you can give to a Mod to let them read the dmail. This is done with a key param that grants access when the dmail is opened by another user. The key param had several problems: * The key contained a full copy of the message's title and body encoded in base64. This meant that anyone given a dmail permalink could read the full dmail just by decoding the key in the link, without even having to open the link. * The key was derived from the dmail's title and body. If you knew or could guess a dmail's title and body you could open the dmail. One case when this was possible was when sending dmails. You could send someone a dmail, take the permalink from your sent copy of the dmail, then increment the dmail id to open the receiver's copy of the dmail. Since the sent copy and the received copy both had the same title and body, they both had the same dmail key. This let you check whether a person had read your dmail, and what time they read it at. * The key verification was done with an insecure string comparison rather than a secure constant-time comparison. This was potentially vulnerable to timing attacks. * Opening a dmail belonging to another user would mark it as read for them. The fix to all this is to use the dmail's id as the key instead of the dmail's title and body. This means that old permalinks no longer work. This is unavoidable given the issues above. Other changes: * The name of the 'Permalink' link is now 'Share'. * Anyone with the 'Share' link can view the dmail, not just Mods.
Installation
It is recommended that you install Danbooru on a Debian-based system since most of the required packages are available on APT. Danbooru has been successfully installed on Fedora, CentOS, FreeBSD, and OS X. The INSTALL.debian install script is straightforward and should be simple to adapt for other platforms.
For best performance, you will need at least 256MB of RAM for PostgreSQL and Rails. The memory requirement will grow as your database gets bigger.
On production Danbooru uses PostgreSQL 9.4, but any 9.x release should work.
Use your operating system's package management system whenever possible. This will simplify the process of installing init scripts, which will not always happen when compiling from source.
Troubleshooting
These instructions won't work for everyone. If your setup is not working, here are the steps I usually recommend to people:
-
Test the database. Make sure you can connect to it using psql. Make sure the tables exist. If this fails, you need to work on correctly installing PostgreSQL, importing the initial schema, and running the migrations.
-
Test the Rails database connection by using rails console. Run Post.count to make sure Rails can connect to the database. If this fails, you need to make sure your Danbooru configuration files are correct.
-
Test Nginx to make sure it's working correctly. You may need to debug your Nginx configuration file.
-
Check all log files.
Services
Danbooru employs numerous external services to delegate some functionality.
For development purposes, you can just run mocked version of these
services. They're available in scripts/mock_services and can be started
automatically using Foreman and the provided Procfile.
Amazon Web Services
In order to enable the following features, you will need an AWS SQS account:
- Pool versions
- Post versions
- IQDB
- Saved searches
- Related tags
Google APIs
The following features requires a Google API account:
- Bulk revert
- Post versions report
IQDB Service
IQDB integration is delegated to the IQDBS service.
Archive Service
In order to access versioned data for pools and posts you will need to install and configure the Archives service.
Reportbooru Service
The following features are delegated to the Reportbooru service:
- Related tags
- Missed searches report
- Popular searches report
- Favorite searches
- Upload trend graphs
Recommender Service
Post recommendations require the Recommender service.
Cropped Thumbnails
There's optional support for cropped thumbnails. This relies on installing
libvips-8.6 or higher and setting Danbooru.config.enable_image_cropping
to true.