Administration System

Overview

The adminsitration server must handle the following interactions:
  1. A user attempts to upload media to the trusted destination's server via Tor-wrapped HTTPS. The server must log this request in its secure database, and respond with an authentication token which must be attached to the user's upload.
  2. A user, having received its upload token, uploads media to the trusted destination's server over Tor-wrapped HTTPS. The server must monitor the upload, and be sure the received data matches the expected checksum reported in step 1, as well as notify the user once the upload has completed.
  3. The trusted administrator would like to view the submissions to the server over the past few days. By logging-in to the server, this password is used to decrypt (via PGP) any media contained on the server.
  4. The administrator would like to contact a user directly to get more information about media received. The server should be able to connect to the original user to send an encrypted message.

Specifications

Each trusted destination should maintain a server that can handle secure uploading, viewing, and administration of media. This server should: A server should have the following software installed: A server should also have the following codebases installed

Instructions for installing/building these applications can be found here.

Security

Special attention should be paid to the security of each of these modules. IPTables should be updated to drop connections from any known malicious IP addresses. Furthermore, certain modules, i.e. those accessible via hidden services, should only accept connections from Tor traffic, meaning all non-tor traffic should be dropped.