Comment by treis
5 years ago
If you split up your user uploaded material into per client subdomains you will know which one is uploading the malicious files. And your clients can block other subdomains limiting their exposure as well. Is it a huge improvement? No, but at least it's something
It's not clear from other commenters that had similar issues that GSB would not outright ban the entire domain instead of specific subdomains.
In this case, the subdomain they banned was xxx.cloudfront.net, and we know they would not block that whole domain.
We might consider that approach in the future, but I foresee complications in the setup.