[B! rails] shin0Oã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

shin0O id:shin0O

railsã«é–¢ã™ã‚‹shin0Oã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯ (8)

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

${{author_name}}$
{{author_name}}{{created}}
{{ #comment }}{{ comment }}{{ /comment }}
- {{ label }}

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

Rails ã® CVE-2019-5418 ã¯ RCE (Remote code execution) ã§ã™
CVE-2019-5418_is_RCE.md Rails ã® CVE-2019-5418 ã¯ RCE (Remote code execution) ã§ã™ 2019-03-23 æ›´æ–° Remote Code Executionã¨ã—ã¦ã€AdvisoryãŒæ›´æ–°ã•ã‚ŒãŸã€‚ https://groups.google.com/d/msg/rubyonrails-security/zRNVOUhKHrg/GmmcVXcmAAAJ Thanks to @sorah @tenderlove å‰ç½®ã ã“ã‚Œã¯ä¼‘æ—¥ã«æ›¸ã„ãŸè¨˜äº‹ã§æ‰€å±žã—ã¦ã„ã‚‹çµ„ç¹”ã¨ã¯ä¸€åˆ‡ã®é–¢ä¿‚ãŒãªã„ã€‚ æ¦‚è¦ CVE-2019-5418 ã¯å®Ÿéš›ã®ã¨ã“ã‚é«˜ç¢ºçŽ‡ã§RCEãªã®ã ãŒ File Content Disclosure ã¨ã„ã†èžãæ…£ã‚Œãªã„åå‰ã§å…¬è¡¨ã•ã‚Œã¦ã€CVE-2019-5419 ã§ DoSãŒå‡ºæ¥ã‚‹ã¨ã„ã†å†…å®¹ã«ãªã£ã¦ã„ã‚‹ ã‚„ã‚ã€è„†å¼±æ€§ã®é–‹ç¤ºæ–¹
shin0O 2019/03/22
security

rails
ãƒªãƒ³ã‚¯
ã€Windows7ã€‘VirtualBox ï¼‹ Vagrant ï¼‹ Ruby + Rails4 é–‹ç™ºç’°å¢ƒã®æ§‹ç¯‰ã€åˆå¿ƒè€…å¿…è¦‹ã€‘ - Qiita
ã€Windows7ã€‘VirtualBox ï¼‹ Vagrant ï¼‹ Ruby + Rails4 é–‹ç™ºç’°å¢ƒã®æ§‹ç¯‰ã€åˆå¿ƒè€…å¿…è¦‹ã€‘Ruby RailsVagrantwindows7 ç›®çš„ æ™®æ®µRuby on Railsã®é–‹ç™ºã¯Macã§è¡Œã£ã¦ã„ã¾ã™ãŒã€é–‹ç™ºãƒ¡ãƒ³ãƒãƒ¼ã®éƒ½åˆä¸Šã€Windowsã§ã‚‚é–‹ç™ºç’°å¢ƒã‚’æ§‹ç¯‰ã™ã‚‹å¿…è¦ãŒã§ã¦ããŸã®ã§Windowsã«Rubyã‚„Railsã‚’ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã—ã¦ã¿ã¾ã—ãŸã€‚ ã—ã‹ã—ã€é–‹ç™ºç’°å¢ƒã®Macã‚„Linuxã§å°Žå…¥ã—ãŸGemãƒ‘ãƒƒã‚±ãƒ¼ã‚¸ãŒå‹•ã‹ãªã„ã€å°Žå…¥ã™ã‚‹ã«ã¯ç‰¹åˆ¥ãªè¨å®šã‚’ã—ãªãã¦ã¯ãªã‚‰ãªã„ãªã©ã®å•é¡ŒãŒã‚ã‚Šã¾ã—ãŸã€‚ ãã“ã§ã€VirtualBox ï¼‹ Vagrant ï¼‹ Ruby + Rails4 ã§Linux(CentOS)é–‹ç™ºç’°å¢ƒã‚’ä½œæˆã™ã‚‹ã“ã¨ã«ã—ã¾ã—ãŸã€‚ ä»Šå›žã¯DBã«sqliteã‚’ä½¿ç”¨ã—ãŸã‚µãƒ³ãƒ—ãƒ«ã‚¢ãƒ—ãƒªã‚’ä½œæˆã€èµ·å‹•ã€ç¢ºèªã™ã‚‹ã¨ã“ã‚ã¾ã§ã‚’è¨˜è¼‰ã—ã¾ã—ãŸã€‚ ä½¿ç”¨ç’°å¢ƒ Windows7 Pr
shin0O 2015/07/27
rails
ãƒªãƒ³ã‚¯
Proxyç’°å¢ƒä¸‹ã§ã®RubyGems - Kazzz's diary
Visual Studio(2005, 2008)ã‚’Rubyã®IDEã®ã‚¨ãƒ³ã‚¸ãƒ³ã¨ã—ã¦åˆ©ç”¨ã™ã‚‹ç”»æœŸçš„ãªé–‹ç™ºç’°å¢ƒã§ã‚ã‚‹ã€Ruby In Steelã‚’è©¦ã—ã¦ã¿ã‚ˆã†ã¨æ€ã„ã€Zipãƒ•ã‚¡ã‚¤ãƒ«ã‚’å±•é–‹ã—ã¦ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã‚’å§‹ã‚ãŸã®ã ãŒã€gemã«ã‚ˆã‚‹Railsã®getã§æ¢ã¾ã£ã¦ã—ã¾ã„ã€æ¬¡ã«é€²ã¾ãªã„ã€‚ Updating RubyGems... ERROR: While executing gem ... (Gem::RemoteFetcher::FetchError) æŽ¥ç¶šæ¸ˆã¿ã®å‘¼ã³å‡ºã—å…ˆãŒä¸€å®šã®æ™‚é–“ã‚’éŽãŽã¦ã‚‚æ£ã—ãå¿œç”ã—ãªã‹ã£ãŸãŸã‚ã€æŽ¥ç¶šã§ãã¾ã›ã‚“ã§ã—ãŸã€‚ã¾ ãŸã¯æŽ¥ç¶šæ¸ˆã¿ã®ãƒ›ã‚¹ãƒˆãŒå¿œç”ã—ãªã‹ã£ãŸãŸã‚ã€ç¢ºç«‹ã•ã‚ŒãŸæŽ¥ç¶šã¯å¤±æ•—ã—ã¾ã—ãŸã€‚ - connect(2)(Errno::ETI MEDOUT) ãªã‚“ã ã“ã‚Šã‚ƒã€ã¨æ€ã„ã¤ã¤ã‚‚ã‚ˆãè€ƒãˆãŸã‚‰ä¼šç¤¾ã®PCã¯ãƒãƒƒãƒˆãƒ¯ãƒ¼ã‚¯çµ±åˆå¾Œã€ã‚¤ãƒ³ã‚¿ãƒ¼ãƒãƒƒãƒˆã«ã¯ãƒ—ãƒã‚ã‚·çµŒç”±ã§ã—ã‹é€šã‚‰ãªã„ã‚“ã
shin0O 2015/04/28
gem

rails

ãƒ—ãƒã‚ã‚·
ãƒªãƒ³ã‚¯
Mobage ã‚’æ”¯ãˆã‚‹ Ruby ã®æŠ€è¡“ ~ è¤‡æ•°DBç·¨ ~ : sonots:blog
shin0O 2014/11/11
rails

mysql
ãƒªãƒ³ã‚¯
Ruby on Rails ãƒãƒ¥ãƒ¼ãƒˆãƒªã‚¢ãƒ«ï¼šå®Ÿä¾‹ã‚’ä½¿ã£ã¦Railsã‚’å¦ã¼ã† - Michael Hartl (ãƒžã‚¤ã‚±ãƒ«ãƒ»ãƒãƒ¼ãƒˆãƒ«)
Ruby on Rails ãƒãƒ¥ãƒ¼ãƒˆãƒªã‚¢ãƒ« ãƒ—ãƒãƒ€ã‚¯ãƒˆé–‹ç™ºã®ï¼â†’ï¼‘ã‚’å¦ã¼ã† Railsãƒãƒ¥ãƒ¼ãƒˆãƒªã‚¢ãƒ«ã¨ã¯ï¼Ÿ
shin0O 2014/10/15
rails

tutorial

ruby
ãƒªãƒ³ã‚¯
railstutorialå…¨11ç« ã‚’çµ‚ãˆãŸ - yuhei.kagaya
railstutorialã¯Ruby on Railsã¨ãƒ‡ãƒ•ã‚¡ã‚¯ãƒˆã‚¹ã‚¿ãƒ³ãƒ€ãƒ¼ãƒ‰ãªGemã‚’ä½¿ã£ã¦Twitteré¢¨ã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã‚’ä½œã‚‹ã¨ã„ã†ã“ã¨ã‚’é¡Œæã«ã€å®Ÿéš›ã®ä»•äº‹ã®é–‹ç™ºã§ã‚‚è¡Œã†GitHub Flowã‚„æŒ¯ã‚‹èˆžã„é§†å‹•é–‹ç™ºã‚’ã—ãªãŒã‚‰ã€Webã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³é–‹ç™ºã‚’å¦ã¶ãƒãƒ¥ãƒ¼ãƒˆãƒªã‚¢ãƒ«ã€‚ Ruby on Rails ãƒãƒ¥ãƒ¼ãƒˆãƒªã‚¢ãƒ«ï¼šå®Ÿä¾‹ã‚’ä½¿ã£ã¦ Rails ã‚’å¦ã¼ã† é•·ã‹ã£ãŸãƒ¼ã€‚ä¸€é€±é–“ä»¥ä¸Šã‹ã‹ã£ãŸã€‚æœ¬æ–‡ä¸ã«ã‚‚æ›¸ã„ã¦ã‚ã£ãŸãŒã€é£›ã°ã—èªã¿ã§ããªã„ã€‚ã¨ã¦ã‚‚æ¿ƒåŽšãªãƒãƒ¥ãƒ¼ãƒˆãƒªã‚¢ãƒ«ãªã®ã§ã€1æ—¥1ç« ãƒšãƒ¼ã‚¹ã€‚ä¼‘ã¿ã®æ—¥ã«8,9,10ç« ã‚’ä¸€æ°—ã«ã‚„ã£ãŸã‚‰å¤§å¤‰éŽãŽã¦10ç« ã¯ã‚ã¾ã‚Šé ã«å…¥ã£ã¦ã“ãªã‹ã£ãŸã€‚ä¸ãƒœã‚¹ã¨å‘¼ã°ã‚Œã¦ã„ã‚‹æ¼”ç¿’ã¯å…¨ã¦é£›ã°ã—ãŸã€‚ å‹‰å¼·ã«ãªã£ãŸç‚¹ã‚„ç–‘å•ç‚¹ã€ãƒãƒžã£ãŸç‚¹ã‚’ãƒ¡ãƒ¢ã—ãªãŒã‚‰ã‚„ã£ã¦ã¿ãŸã€‚ ãƒ¡ãƒ¢ http://yuheikagaya.hatena blog.jp/entry/2014/10/15/005554 ht
shin0O 2014/10/15
rails

ruby

ãƒãƒ¥ãƒ¼ãƒˆãƒªã‚¢ãƒ«

*ã‚ã¨ã§è©¦ã™
ãƒªãƒ³ã‚¯
GITLAB: Self Hosted Git Management Application
1. Keep your source code at your server! Your own lite app for projects/repositories hosting on your server. Fast, secure and stable solution based on ruby on rails. 2. Use Git! We use git as version control system for projects 3. Browse source-code, issues, comments. Manage team access to repository
shin0O 2012/11/16
git

Server

rails
ãƒªãƒ³ã‚¯
Ruby on Rails 3.2 ã‚’ Ubuntu ã«ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã™ã‚‹æ‰‹é †ã‚’ã‹ãªã‚Šä¸å¯§ã«èª¬æ˜Žã—ã¦ã¿ã¾ã—ãŸ
Ubuntuã§åˆã‚ã¦Rubyã‚„Railsã«æŒ‘æˆ¦ã™ã‚‹æ–¹ã®ãŸã‚ã«ã€æœ€æ–°ã® Ruby 1.9.3 ã¨ Ruby on Rails 3.2 ã®ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«æ‰‹é †ã‚’ã‚„ã‚„è©³ã—ãèª¬æ˜Žã—ã¾ã™ã€‚ ãªãŠã€æœ¬ç¨¿ã§ã¯Rubyã®ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã«rbenvã‚’åˆ©ç”¨ã—ã¾ã™ã€‚apt-getã§ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã•ã‚Œã‚‹Rubyã¯ãƒãƒ¼ã‚¸ãƒ§ãƒ³ãŒå¤ã„ã®ã§ã€ï¼ˆæ‰‹é †ãŒã¡ã‚‡ã£ã¨è¤‡é›‘ã§ã™ãŒï¼‰æœ¬ç¨¿ã®æ–¹æ³•ã‚’ãŠå‹§ã‚ã—ã¾ã™ã€‚ã¾ãŸã€rbenvã‚’åˆ©ç”¨ã™ã‚‹ã¨ã€ãƒ—ãƒã‚¸ã‚§ã‚¯ãƒˆã”ã¨ã«Rubyã®ãƒãƒ¼ã‚¸ãƒ§ãƒ³ã‚’ç°¡å˜ã«åˆ‡ã‚Šæ›¿ãˆã‚‰ã‚Œã‚‹ã¨ã„ã†ãƒ¡ãƒªãƒƒãƒˆã‚‚ã‚ã‚Šã¾ã™ã€‚ æœ¬ç¨¿ãŒå¯¾è±¡ã¨ã™ã‚‹ OS ã¯ Ubuntu 12.04 LTS ãŠã‚ˆã³ Ubuntu 12.10 ã®ãƒ‡ã‚¹ã‚¯ãƒˆãƒƒãƒ—ç‰ˆã§ã™ã€‚Ubuntuä¸Šã§Ruby/Railsã®å¦ç¿’ã‚„Railsã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã®é–‹ç™ºã‚’ã—ãŸã„æ–¹å‘ã‘ã«æ›¸ã„ã¦ã„ã¾ã™ã€‚é–‹ç™ºã—ãŸRailsã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã‚’ã‚µãƒ¼ãƒç‰ˆã®Ubuntuã«ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã—ã¦é‹ç”¨ã—ãŸã„æ–¹ã¯ã€Rail
shin0O 2012/07/08
ã‹ãªã‚Šè©³ã—ãæ›¸ã„ã¦ã‚‚ã‚‰ã£ã¦ã¦åˆå¦è€…ã«ã¯ã†ã‚Œã—ã„ â†’ å¿…è¦ãƒ‘ãƒƒã‚±ãƒ¼ã‚¸ãŒåœ°å‘³ã«æœ‰åŠ¹ã€‚ ä½•ãŒå¿…è¦ãªã®ã‹ãŒå…¬å¼ã‹ã‚‰ã¯èªã‚ãªã‹ã£ãŸ

rails

ubuntu

rbenv

ruby
ãƒªãƒ³ã‚¯
1