The reason that they require an account is because if they did not require user side authentication then it would be trivial to upload obfuscated malware and then use Nexus as a host to distribute it. If someone uploads malware to a random S3 bucket or random VPS or random shared server and tries to use it as a malicious host, the owner and operator will notice a massive bandwidth spike Nexus won’t notice 30,000 downloads.
Since we’re necrosing the thread
The reason that they require an account is because if they did not require user side authentication then it would be trivial to upload obfuscated malware and then use Nexus as a host to distribute it. If someone uploads malware to a random S3 bucket or random VPS or random shared server and tries to use it as a malicious host, the owner and operator will notice a massive bandwidth spike Nexus won’t notice 30,000 downloads.
We’re talking about for downloading not uploading.