[B! security] hackedã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

hacked id:hacked

securityã«é–¢ã™ã‚‹hackedã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯ (21)

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

${{author_name}}$
{{author_name}}{{created}}
{{ #comment }}{{ comment }}{{ /comment }}
- {{ label }}

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

IPA ã‚»ã‚ãƒ¥ã‚¢ãƒ»ãƒ—ãƒã‚°ãƒ©ãƒŸãƒ³ã‚°è¬›åº§ï¼šC / C++è¨€èªžç·¨
IPAã€€ç‹¬ç«‹è¡Œæ”¿æ³•äºº æƒ…å ±å‡¦ç†æŽ¨é€²æ©Ÿæ§‹ ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã‚»ãƒ³ã‚¿ãƒ¼ã«ã‚ˆã‚‹ã‚»ã‚ãƒ¥ã‚¢ãƒ»ãƒ—ãƒã‚°ãƒ©ãƒŸãƒ³ã‚°è¬›åº§ï¼šC / C++è¨€èªžç·¨
hacked 2010/02/14
ãƒ—ãƒã‚°ãƒ©ãƒŸãƒ³ã‚°

IPA

c++

security

Cè¨€èªž

C C++
ãƒªãƒ³ã‚¯
sourceforge.jp
Weâ€™re getting things ready Loading your experienceâ€¦ This wonâ€™t take long.
hacked 2009/08/11
javascript

security
ãƒªãƒ³ã‚¯
OWASP(The Open Web Application Security Project)æ—¥æœ¬èªžè¨³ã€Œå®‰å…¨ãªWeb ã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³æ§‹ç¯‰ã®æ‰‹å¼•ãã€(PDF)
hacked 2009/04/22
security

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£
ãƒªãƒ³ã‚¯
å¾³ä¸¸æµ©ã®æ—¥è¨˜
ã‚µãƒ¼ãƒãƒ¼ã®èƒ½åŠ›ã®å•é¡Œã‚‚ã‚ã‚Šã€ã€Œå¾³ä¸¸æµ©ã®æ—¥è¨˜ã€ã‚’ä»¥ä¸‹ã®URLã«ç§»è»¢è‡´ã—ã¾ã™ã€‚æ—§ã®ã‚³ãƒ³ãƒ†ãƒ³ãƒ„ã¯ãã®ã¾ã¾ã¨ã—ã€æ–°ã—ã„ã‚¨ãƒ³ãƒˆãƒªã‹ã‚‰æ–°ãƒ–ãƒã‚°ã®æ–¹ã«æ›¸ã„ã¦ã„ãã¾ã™ã€‚ å¾³ä¸¸æµ©ã®æ—¥è¨˜ (blog.tokumaru.org) æ–°ãƒ–ãƒã‚°ã®æœ€åˆã®ã‚¨ãƒ³ãƒˆãƒªã¨ã—ã¦ã€ã€Œã‚½ãƒ•ãƒˆãƒãƒ³ã‚¯ã®ã‚²ãƒ¼ãƒˆã‚¦ã‚§ã‚¤åž‹SSLã®è„†å¼±æ€§ã‚’æŒ¯ã‚Šè¿”ã‚‹ã€ã‚’æ›¸ãã¾ã—ãŸã®ã§ã€ãœã²ãŠèªã¿ãã ã•ã„ã€‚ _PDO/MySQL(Windowsç‰ˆ)ã®æ–‡å—ã‚¨ãƒ³ã‚³ãƒ¼ãƒ‡ã‚£ãƒ³ã‚°æŒ‡å®šã®ä¸å…·åˆåŽŸå› å‰å›žã®ãƒ–ãƒã‚°ã€ŒPHP5.3.6ã‹ã‚‰PDOã®æ–‡å—ã‚¨ãƒ³ã‚³ãƒ¼ãƒ‡ã‚£ãƒ³ã‚°æŒ‡å®šãŒå¯èƒ½ã¨ãªã£ãŸãŒWindowsç‰ˆã§ã¯ä¸å…·åˆï¼ˆè„†å¼±æ€§ï¼‰ã‚ã‚Šã€ã«ã¦ã€PHP5.3.6ï¼ˆæœ¬ã‚¨ãƒ³ãƒˆãƒªåŸ·ç†æ™‚ç‚¹ã§ã®æœ€æ–°ç‰ˆï¼‰ã‹ã‚‰PDOã«ã¦ã‚µãƒãƒ¼ãƒˆã•ã‚ŒãŸæ–‡å—ã‚¨ãƒ³ã‚³ãƒ¼ãƒ‡ã‚£ãƒ³ã‚°æŒ‡å®šãŒWindowsç‰ˆã§ã¯æ£ã—ãå‹•ä½œã—ãªã„ã“ã¨ã‚’å ±å‘Šã—ã¾ã—ãŸã€‚Linuxã§ã¯æ£å¸¸ã«å‹•ä½œã™ã‚‹ã®ã§ä¸æ€è°ã ãªã¨ã„ã†è©±ã«ãªã£ã¦ã„ãŸã®ã§ã™ãŒã€åƒè‘‰å¾å¼˜ã•ã‚“(@nihe
hacked 2009/01/31
ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£

security
ãƒªãƒ³ã‚¯
PHPã®ã€Œå®ˆè·ç¥žã€Suhosin
PHPã¯ï¼Œæ•°ãˆåˆ‡ã‚Œãªã„ã»ã©ã®Webã‚µã‚¤ãƒˆã§ä½¿ã‚ã‚Œã¦ã„ã‚‹éžå¸¸ã«æœ‰åãªãƒ—ãƒã‚°ãƒ©ãƒŸãƒ³ã‚°è¨€èªžã§ã‚ã‚‹ã€‚åŸºæœ¬çš„ã«ã¯ã‚¹ã‚¯ãƒªãƒ—ãƒˆè¨€èªžã§ã‚ã‚Šï¼Œå®Ÿè¡Œæ™‚ã«ã‚³ãƒ³ãƒ‘ã‚¤ãƒ«ã•ã‚Œã‚‹ã€‚PHPã¯éžå¸¸ã«å¤šãã®ã‚³ãƒŸãƒ¥ãƒ‹ãƒ†ã‚£ã«ã‚ˆã£ã¦æ”¯ãˆã‚‰ã‚Œã¦ãŠã‚Šï¼Œæ§˜ã€…ãªæ©Ÿèƒ½ã‚’æä¾›ã™ã‚‹è†¨å¤§ãªæ•°ã®ã‚ªãƒ¼ãƒ—ãƒ³ãƒ»ã‚½ãƒ¼ã‚¹ãƒ»ãƒ©ã‚¤ãƒ–ãƒ©ãƒªãŒå…¬é–‹ã•ã‚Œã¦ã„ã‚‹ã€‚ã€ŒWordPressã€ã¨ã„ã£ãŸäººæ°—ã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã‚‚ï¼ŒPHPã§è¨˜è¿°ã•ã‚Œã¦ã„ã‚‹ã€‚ãŸã ã—ï¼ŒPHPã«ã‚‚ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã®å•é¡Œã¯å˜åœ¨ã™ã‚‹ã€‚ PHPã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å•é¡Œã¯ï¼Œé•·å¹´ã«ã‚ãŸã£ã¦å¤šãã®é–‹ç™ºè€…ãŒå•é¡Œã®ä¿®æ£ã«å–ã‚Šçµ„ã‚“ã§ããŸã€‚ã—ã‹ã—ï¼Œå¸¸ã«è¿…é€Ÿãªå¯¾å¿œãŒè¡Œã‚ã‚Œã¦ããŸã‚ã‘ã§ã¯ãªãï¼Œè¢«å®³ã‚’å—ã‘ã‚‹ãƒ¦ãƒ¼ã‚¶ãƒ¼ã‚‚å˜åœ¨ã—ãŸã€‚2006å¹´æœ«ã«ã¯ï¼ŒPHPé–‹ç™ºè€…ã®Stefan Esseræ°ãŒï¼Œã“ã®çŠ¶æ³ã«å«Œæ°—ãŒã•ã—ã¦ï¼ŒPHP Security Response Teamã‚’è¾žä»»ã—ãŸã€‚ Esseræ°ã¯è‡ªèº«ã®ãƒ–ãƒã‚°ã§ï¼Œã€Œï¼ˆè¾žä»»ã—ãŸç†ç”±ã¯ï¼‰ã„ãã¤ã‹ã‚ã‚‹ãŒï¼Œæœ€ã‚‚æ±º
hacked 2009/01/08
php

programming

security
ãƒªãƒ³ã‚¯
ï¼ ITç·¨é›†è€…ãŒé¸ã¶2008å¹´å¿…èªè¨˜äº‹ï¼šã€ŒSecurityï¼†Trustã€ç·¨ ï¼ ï¼ IT
2008/12/24 ï¼ ITã«ã¯1å¹´é–“ã«å¤šæ•°ã®æŠ€è¡“è§£èª¬ã€å‹•å‘è§£èª¬ã®è¨˜äº‹ãŒæŽ²è¼‰ã•ã‚Œã¾ã™ã€‚é‡è¦ãªãŒã‚‰è¦‹è½ã¨ã•ã‚Œã¦ã—ã¾ã£ãŸè¨˜äº‹ã‚‚ã‚ã‚Šã¾ã™ã—ã€ã„ã¾ã‚ã‚‰ãŸã‚ã¦èªã‚€ã¨åˆ¥ã®è¦‹æ–¹ãŒã§ãã‚‹è¨˜äº‹ã‚‚ã‚ã‚Šã¾ã™ã€‚ãã“ã§å¹´æœ«å¹´å§‹ä¼ç”»ã¨ã—ã¦ã€ï¼ ITã®å„ãƒ•ã‚©ãƒ¼ãƒ©ãƒ ç·¨é›†è€…ãŒæŽ¨è–¦ã™ã‚‹ã€Œ2008å¹´å¿…èªè¨˜äº‹ã€ã‚’ç´¹ä»‹ï¼ æœ€åˆã¯Securityï¼†Trustãƒ•ã‚©ãƒ¼ãƒ©ãƒ ã§ã™ã€‚ Securityï¼†Trustãƒ•ã‚©ãƒ¼ãƒ©ãƒ ãŒãŠå‹§ã‚ã™ã‚‹2008å¹´ã®å¿…èªè¨˜äº‹ã€ã¾ãšã¯ã€ŒDNSã‚ãƒ£ãƒƒã‚·ãƒ¥ãƒã‚¤ã‚ºãƒ‹ãƒ³ã‚°ã€é–¢ä¿‚ã®è¨˜äº‹ã§ã™ã€‚ï¼ ITãƒ‹ãƒ¥ãƒ¼ã‚¹ã®é–¢é€£è¨˜äº‹ã€ŒDNSã‚¢ã‚¿ãƒƒã‚¯ã€æŠ€è¡“è€…ãŒã¾ãšã™ã¹ã3ã¤ã®å¯¾ç–ã€ã¯ã€Œ2008å¹´7æœˆã€ã‚¤ãƒ³ã‚¿ãƒ¼ãƒãƒƒãƒˆã®ä¸–ç•Œã‚’æ ¹å¹¹ã‹ã‚‰æºã‚‹ãŒã™å¤§ããªå•é¡ŒãŒå…¬é–‹ã•ã‚ŒãŸã€ã¨ã®æ›¸ãå‡ºã—ã§ã€DNSã‚ãƒ£ãƒƒã‚·ãƒ¥ãƒã‚¤ã‚ºãƒ‹ãƒ³ã‚°æ”»æ’ƒã®æ·±åˆ»ã•ã‚’è¡¨ç¾ã—ã¦ã„ã¾ã™ã€‚ æŠ€è¡“çš„ãªè§£èª¬ã¯Securityï¼†Trustãƒ•ã‚©ãƒ¼ãƒ©ãƒ ã®ã€ŒDNSã‚ãƒ£ãƒƒã‚·ãƒ¥ãƒã‚¤ã‚ºãƒ‹ãƒ³ã‚°ã®å½±éŸ¿ã¨å¯¾ç– å‰ç·¨ã€ã¨åŒã€Œå¾Œ
hacked 2008/12/25
security

ã‚ã¨ã§èªã‚€
ãƒªãƒ³ã‚¯
Why So Serious
Artificial intelligenceSoftware developmentProgramming languagesData and knowledge engineeringInformation management 6. Computational intelligence in smart systems 7. Computer techno logies in various fields 8. Programming practices 9. Information and communication techno logies in education Our conference is a great excuse to get away from your work routine, make useful acquaintances, present your
hacked 2008/07/11
ï¼¤ï¼®ï¼³ãƒã‚§ãƒƒã‚«ãƒ¼

web

security
ãƒªãƒ³ã‚¯
A. WEBãƒ—ãƒã‚°ãƒ©ãƒžã‚³ãƒ¼ã‚¹
hacked 2008/03/28
security
ãƒªãƒ³ã‚¯
ã‚„ã•ã—ã„ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£(ActiveX)
MicrosoftãŒã‚¤ãƒ³ã‚¿ãƒ¼ãƒãƒƒãƒˆã‚’ã‚‚ã£ã¨ä½¿ã„ã‚„ã™ãã™ã‚‹ãŸã‚ã«ä½œã‚Šå‡ºã—ãŸActiveXã€‚ã—ã‹ã—ä»Šæ—¥ã§ã¯ã€Œå±é™ºãªãŸã‚åˆ©ç”¨ã—ãªã„ã»ã†ãŒè‰¯ã„ã€ã¨ã¾ã§è¨€ã‚ã‚Œã¦ã„ã¾ã™ã€‚Internet Explorerã‚„Outlookã‚’å®‰å…¨ã«ä½¿ã†ãŸã‚ã«ActiveXã«ã¤ã„ã¦çŸ¥ã£ã¦ãŠãã¾ã—ã‚‡ã†ã€‚ ActiveXã®ç¨®é¡ž ActiveXãŒå±é™ºãªãƒ—ãƒã‚°ãƒ©ãƒ ã®æ§˜ã«è¨€ã‚ã‚Œã¦ã„ã¾ã™ãŒã€ãã‚‚ãã‚‚Windowsã¨ã„ã†å·¨å¤§ãªãƒ—ãƒã‚°ãƒ©ãƒ ã®å¡Šã¯å¤šæ•°ã®ActiveXã§æ§‹æˆã•ã‚Œã¦ã„ã¾ã™ã€‚ã‚‚ã¨ã‚‚ã¨ActiveXã¨ã¯ã‚ã‚‹ç‰¹å®šã®å‡¦ç†ã‚’è¡Œã†å°ã•ãªãƒ—ãƒã‚°ãƒ©ãƒ ã®ã“ã¨ã§ã€ãã®å˜ä½ã‚’ã‚³ãƒ³ãƒãƒ¼ãƒãƒ³ãƒˆã¨å‘¼ã³ã¾ã™ã€‚ ä¾‹ãˆã°ç”»é¢ã«æ–‡å—ã‚’è¡¨ç¤ºã™ã‚‹ã€Œæ–‡å—è¡¨ç¤ºã€ã®ActiveXã‚³ãƒ³ãƒãƒ¼ãƒãƒ³ãƒˆã‚„ã€ãƒ—ãƒªãƒ³ã‚¿ã«æ–‡å—ã‚’å‡ºã™ã€Œæ–‡å—ãƒ—ãƒªãƒ³ãƒˆã€ã®ActiveXã‚³ãƒ³ãƒãƒ¼ãƒãƒ³ãƒˆã®ã‚ˆã†ã«ã„ã‚ã„ã‚ãªç¨®é¡žã®ã‚³ãƒ³ãƒãƒ¼ãƒãƒ³ãƒˆãŒã‚ã‚Šã¾ã™ã€‚ ã§ã¯Internet Explorer(IE)ã‚„
hacked 2008/02/07
activex

security
ãƒªãƒ³ã‚¯
æƒ…å ±ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å¯¾ç–ãƒ™ãƒ³ãƒãƒžãƒ¼ã‚¯ | æƒ…å ±ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ | IPA ç‹¬ç«‹è¡Œæ”¿æ³•äºº æƒ…å ±å‡¦ç†æŽ¨é€²æ©Ÿæ§‹
æ¦‚è¦ æƒ…å ±ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å¯¾ç–ãƒ™ãƒ³ãƒãƒžãƒ¼ã‚¯ã¯ã€çµ„ç¹”ã®æƒ…å ±ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ãƒžãƒã‚¸ãƒ¡ãƒ³ãƒˆã‚·ã‚¹ãƒ†ãƒ ã®å®Ÿæ–½çŠ¶æ³ã‚’ã€è‡ªã‚‰ãŒè©•ä¾¡ã™ã‚‹è‡ªå·±è¨ºæ–ãƒ„ãƒ¼ãƒ«ã§ã™ã€‚ è¨ºæ–é …ç›®ã®è³ªå•ã«ç”ãˆã‚‹ã“ã¨ã§ã€çµ„ç¹”ã®æƒ…å ±ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã¸ã®å–çµ„çŠ¶æ³ã‚’è‡ªå·±è©•ä¾¡ã™ã‚‹ã“ã¨ãŒå¯èƒ½ã§ã™ã€‚ã¾ãŸã€æœ›ã¾ã‚Œã‚‹æ°´æº–ã‚„ä»–ç¤¾ã®å¯¾ç–çŠ¶æ³ã¨è‡ªç¤¾ã®å¯¾ç–çŠ¶æ³ã‚’æ¯”è¼ƒã™ã‚‹ã“ã¨ãŒã§ãã¾ã™ã€‚ èª¬æ˜Ž æƒ…å ±ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å¯¾ç–ãƒ™ãƒ³ãƒãƒžãƒ¼ã‚¯ã¯æƒ…å ±ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å¯¾ç–ã¸ã®å–çµ„ã¿ã«é–¢ã™ã‚‹ 25 å• (è©•ä¾¡é …ç›®) ã¸ã®å›žç”ã‹ã‚‰å¯¾ç–çŠ¶æ³ã®ã‚¹ã‚³ã‚¢ã‚’è¨ˆç®—ã—ã¾ã™ã€‚ æ›´ã«è‡ªç¤¾ã®å¾“æ¥å“¡æ•°ã€å£²ä¸Šé«˜ã€é‡è¦æƒ…å ±ã®ä¿æœ‰æ•°ã€ITä¾å˜åº¦ãªã©ã®è¨å•ã¸ã®å›žç”ã‹ã‚‰ã€ä¼æ¥ã®ã‹ã‹ãˆã‚‹ãƒªã‚¹ã‚¯ã‚’è¡¨ã™ã€Œæƒ…å ±ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ãƒªã‚¹ã‚¯æŒ‡æ¨™ã€ã‚’è¨ˆç®—ã—ã¾ã™ã€‚ãã®æŒ‡æ¨™ã‚’å…ƒã«ä¸‹è¨˜ã®3ã¤ã®ã‚°ãƒ«ãƒ¼ãƒ—ã®ã©ã“ã«è‡ªç¤¾ãŒå±žã™ã‚‹ã‹åˆ†é¡žã—ã¾ã™ã€‚ ã‚°ãƒ«ãƒ¼ãƒ—â… GIï¼šé«˜æ°´æº–ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ãƒ¬ãƒ™ãƒ«ãŒè¦æ±‚ã•ã‚Œã‚‹å±¤ ã‚°ãƒ«ãƒ¼ãƒ—â…¡ GIIï¼šç›¸å¿œã®æ°´æº–ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ãƒ¬ãƒ™ãƒ«ãŒæœ›ã¾ã‚Œã‚‹å±¤ ã‚°
hacked 2008/02/03
security

ipa

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£
ãƒªãƒ³ã‚¯
http://www.secureinfo.jp/index.html
hacked 2007/11/07
ãŸã¾ã«ã¯ç¢ºèªã™ã‚‹ã“ã¨

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£

security
ãƒªãƒ³ã‚¯
æš—å·åŒ–æ©Ÿèƒ½ã‚’ç°¡å˜ã«å®Ÿè£…ã—ã‚ˆã† â€• ï¼ IT
â€•â€• å¯¾ç§°æš—å·æ©Ÿèƒ½ã¨æš—å·ãƒãƒƒã‚·ãƒ¥ã‚’ç°¡å˜ã«åˆ©ç”¨ã™ã‚‹ãŸã‚ã®æ©Ÿèƒ½ã‚’æä¾›ã™ã‚‹ã€ŒCryptography Application Blockã€ â€•â€• ã‚¢ãƒãƒŠãƒ¼ãƒ‰æ ªå¼ä¼šç¤¾ã€€å¸‚å· é¾å¤ªï¼ˆpatterns & practices Championï¼‰ 2006/08/10 å‰å›žã§ã¯ã€ASP.NET 2.0ã®èªè¨¼ãƒ»èªå¯æ©Ÿèƒ½ã‚’è¸ã¾ãˆãªãŒã‚‰ã€Security Application Blockã‚’ä½¿ã£ãŸèªå¯æ©Ÿèƒ½ã«ã¤ã„ã¦è§£èª¬ã—ãŸã€‚ ä»Šå›žã¯æš—å·åŒ–æ©Ÿèƒ½ã‚’æä¾›ã™ã‚‹Cryptography Application Blockï¼ˆä»¥ä¸‹CryptoABï¼‰ã«ã¤ã„ã¦è§£èª¬ã™ã‚‹ã€‚ãªãŠã€å‰å›žã§2006å¹´1æœˆã«.NET Framework 2.0ã«å¯¾å¿œã—ãŸEnterprise Library 2.0ï¼ˆä»¥ä¸‹EntLib 2.0ï¼‰ãŒãƒªãƒªãƒ¼ã‚¹ã•ã‚ŒãŸã“ã¨ã¯ã™ã§ã«è¿°ã¹ã¦ã„ã‚‹ãŒã€CryptoABã¯Hash Providerï¼ˆï¼ãƒãƒƒã‚·ãƒ¥ç”Ÿæˆã‚¢ãƒ«ã‚´ãƒªã‚ºãƒ ã‚’ã‚«
hacked 2007/11/07
ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£

ãƒ—ãƒã‚°ãƒ©ãƒŸãƒ³ã‚°

æš—å·

security
ãƒªãƒ³ã‚¯
http://avpusers.org/index.html
hacked 2007/09/24
security

ãƒ•ãƒªãƒ¼ã‚½ãƒ•ãƒˆ

ã‚¢ãƒ³ãƒã‚¦ã‚£ãƒ«ã‚¹ã‚½ãƒ•ãƒˆ
ãƒªãƒ³ã‚¯
PHPã‚³ãƒ¼ãƒ‰é›£èªãƒ»æš—å·åŒ–ãƒ„ãƒ¼ãƒ«é›†:phpspoté–‹ç™ºæ—¥èªŒ
PHPã‚¹ã‚¯ãƒªãƒ—ãƒˆé…å¸ƒã«ã‚ãŸã£ã¦ã€ã‚½ãƒ¼ã‚¹ã‚³ãƒ¼ãƒ‰ã‚’é›£èªãƒ»æš—å·åŒ–ã—ãŸã„å ´åˆã®å‚è€ƒãƒªãƒ³ã‚¯ã€‚ é›£èªåŒ– POBS iWeb ToolKit PHPã‚½ãƒ¼ã‚¹ã®é›£èªåŒ– æš—å·åŒ– PHP Screw ionCube EncoderÂ (æœ‰å„Ÿ) ã‚³ãƒ¼ãƒ‰ãƒãƒƒã‚¯Â (æœ‰å„Ÿ) ã„ã‚ã„ã‚ã‚ã‚Šã¾ã™ãã€‚
hacked 2007/06/26
php

security

tool

æš—å·
ãƒªãƒ³ã‚¯
PHP ã¨ Web ã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã«ã¤ã„ã¦ã®ãƒ¡ãƒ¢
ã“ã®ãƒšãƒ¼ã‚¸ã«ã¤ã„ã¦ã®èª¬æ˜Žãƒ»æ³¨æ„ãªã© PHP ã¯ã€Apache ãƒ¢ã‚¸ãƒ¥ãƒ¼ãƒ«ã‚„ã€CGIã€ã‚³ãƒžãƒ³ãƒ‰ãƒ©ã‚¤ãƒ³ã¨ã—ã¦ä½¿ç”¨ã§ãã‚‹ã‚¹ã‚¯ãƒªãƒ—ãƒˆè¨€èªžã§ã™ã€‚ã“ã®ãƒšãƒ¼ã‚¸ã§ã¯ã€ä¸»ã« PHP ã«ãŠã‘ã‚‹ã€Web ã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å•é¡Œã«ã¤ã„ã¦ã¾ã¨ã‚ã¦ã„ã¾ã™ã€‚ Web ã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å•é¡Œã¨ã—ã¦ã¯ã€ä»¥ä¸‹ã®å•é¡Œã«ã¤ã„ã¦ã‚ˆãå–ã‚ŠæŒ™ã’ã‚‰ã‚Œã¦ã„ã‚‹ã¨æ€ã„ã¾ã™ãŒã€ã“ã‚Œã‚‰ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å•é¡Œã«ã¤ã„ã¦èª¿ã¹ãŸã“ã¨ã‚„ã€ã“ã‚Œã‚‰ä»¥å¤–ã§ã‚‚ã€PHP ã«é–¢é€£ã—ã¦ã„ã‚‹ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å•é¡Œã«ã¤ã„ã¦çŸ¥ã£ã¦ã„ã‚‹ã“ã¨ã«ã¤ã„ã¦ãƒ¡ãƒ¢ã—ã¦ãŠãã¾ã™ã€‚ ã‚¯ãƒã‚¹ã‚µã‚¤ãƒˆã‚¹ã‚¯ãƒªãƒ—ãƒ†ã‚£ãƒ³ã‚° SQL ã‚¤ãƒ³ã‚¸ã‚§ã‚¯ã‚·ãƒ§ãƒ³ ãƒ‘ã‚¹ãƒ»ãƒˆãƒ©ãƒãƒ¼ã‚µãƒ«(ãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ»ãƒˆãƒ©ãƒãƒ¼ã‚µãƒ«) ã‚»ãƒƒã‚·ãƒ§ãƒ³ãƒã‚¤ã‚¸ãƒ£ãƒƒã‚¯ ã‚³ãƒžãƒ³ãƒ‰ã‚¤ãƒ³ã‚¸ã‚§ã‚¯ã‚·ãƒ§ãƒ³ ã¾ãŸã€PHP ãƒžãƒ‹ãƒ¥ã‚¢ãƒ« : ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã‚„ã€PHP Security Guide (PHP Security Consortium) ã«ã¯ã€PH
hacked 2007/05/07
security

php

programming
ãƒªãƒ³ã‚¯
Â«uJavaScriptv224;\ IT
æ‚ªè³ªãªã€ŒJavaScriptã€ãŒã€ã¾ã™ã¾ã™ç‹¡çŒ¾ã«ãªã£ã¦ã„ã‚‹ã€‚Arbor Networksã®ä¸Šç´šã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã‚¨ãƒ³ã‚¸ãƒ‹ã‚¢ã§ã‚ã‚‹ãƒ›ã‚»ãƒ»ãƒŠã‚¶ãƒªã‚ªåšå£«ã«ã‚ˆã‚Œã°ã€ä»Šæ—¥ã®JavaScriptã¯ã€æ¨™çš„ã®Webãƒ–ãƒ©ã‚¦ã‚¶ã‚„è„†å¼±ãªã‚³ãƒ³ãƒãƒ¼ãƒãƒ³ãƒˆã€ã‚¢ã‚¯ã‚»ã‚¹å¯èƒ½ãªã‚¯ãƒ©ã‚¹è˜åˆ¥åï¼ˆCLSIDï¼‰ã‚’ç‰¹å®šã—ãŸã‚Šã€å€‹åˆ¥ã«ã‚«ã‚¹ã‚¿ãƒžã‚¤ã‚ºã—ãŸæ”»æ’ƒã‚’ä»•æŽ›ã‘ãŸã‚Šã™ã‚‹ã“ã¨ã‚‚å¯èƒ½ã ã¨ã„ã†ã€‚ ãƒŠã‚¶ãƒªã‚ªæ°ã¯ã€ã€ŒNeoSploitã€ã¨å‘¼ã°ã‚Œã‚‹æ–°ãŸãªãƒžãƒ«ã‚¦ã‚§ã‚¢ãƒ„ãƒ¼ãƒ«ãŒã€å°‘ãªãã¨ã‚‚7ç¨®ã®ç•°ãªã‚‹æ‰‹æ®µã®ä¸ã‹ã‚‰æ¨™çš„ã®å¼±ç‚¹ã‚’è¡ãã‚‚ã®ã‚’é¸æŠžã—ã€PCã¸ã®æ„ŸæŸ“ã‚’åºƒã’ã¦ã„ã‚‹äº‹å®Ÿã‚’æŠŠæ¡ã—ãŸã¨è¿°ã¹ã¦ã„ã‚‹ã€‚ ã€ŒéŽåŽ»æ•°ã‚«æœˆã®é–“ã«ã€ã“ã®ç¨®ã®æ”»æ’ƒã‚„æ‚ªè³ªãªJavaScriptãŒå¤§é‡ã«å‡ºå›žã£ãŸã€‚JavaScriptãŒã‚ˆã‚Šè‡ªå·±é˜²è¡›çš„ã«ã€ãªãŠã‹ã¤æ”»æ’ƒçš„ã«æ‚ªç”¨ã•ã‚Œã‚‹ã‚±ãƒ¼ã‚¹ãŒå¢—ãˆã¦ã„ã‚‹ã€ï¼ˆãƒŠã‚¶ãƒªã‚ªæ°ï¼‰ ãƒŠã‚¶ãƒªã‚ªæ°ã¯4æœˆ18æ—¥ã«ç¾åœ°ã§é–‹ã‹ã‚ŒãŸã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã‚¤ãƒ™ãƒ³ãƒˆã€ŒCanSecWestã€ã«å‡ºå¸
hacked 2007/04/24
javascript

security

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£
ãƒªãƒ³ã‚¯
é€£è¼‰ï¼šãªãœPHPã‚¢ãƒ—ãƒªã«ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ãƒ›ãƒ¼ãƒ«ãŒå¤šã„ã®ã‹?ï½œgihyo.jp
Stitchâ â ã€æœ€æ–°AIãƒ¢ãƒ‡ãƒ«æè¼‰ã§ãƒ‡ã‚¶ã‚¤ãƒ³æ©Ÿèƒ½ã‚’å¼·åŒ–â â ã€ã€Œãƒã‚¤ãƒ–ãƒ‡ã‚¶ã‚¤ãƒ³ã€æ™‚ä»£ã¸ â€”â â€”è£½å“åç”±æ¥ã®â€œè¤‡æ•°ç”»é¢ã‚’ç¸«ã„åˆã‚ã›ã‚‹â€ã€Œãƒ—ãƒãƒˆã‚¿ã‚¤ãƒ—ã€æ©Ÿèƒ½ã‚’è¿½åŠ é«˜æ©‹å’Œé“ 2025-12-29
hacked 2007/03/26
php

security

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£
ãƒªãƒ³ã‚¯
cyano: HTTPSã®èªè¨¼ãƒšãƒ¼ã‚¸ã‹ã‚‰èªè¨¼å¾Œã€HTTPã®ãƒšãƒ¼ã‚¸ã¸ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ãƒ¼ã®è¦å‘Šç„¡ã—ã«ãƒªãƒ€ã‚¤ãƒ¬ã‚¯ãƒˆã™ã‚‹æ–¹æ³•
æ™®é€šã«è€ƒãˆã‚‹ã¨ã€ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ã‚’èªè¨¼å¾Œã®HTTPãƒ¬ã‚¹ãƒãƒ³ã‚¹ãƒ˜ãƒƒãƒ€(*1ã®éƒ¨åˆ†)ã§ Location: http://www.exmaple.com/logined.html ã¨ã‹ã™ã‚Œã°ã„ã„ã‚“ã˜ã‚ƒãªã„ã®ï¼Ÿã¨æ€ã†ã®ã§ã™ãŒã€ãã†ã™ã‚‹ã¨IEã§ã€Œã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ãƒ¼ã§ä¿è·ã•ã‚Œã¦ã„ãªã„ãƒšãƒ¼ã‚¸ã«ç§»å‹•ã—ã‚ˆã†ã¨ã—ã¦ã„ã¾ã™ã€ã¨ã„ã†ã‚ˆã†ãªè¦å‘Šãƒ€ã‚¤ã‚¢ãƒã‚°ãŒå‡ºã¦ãã¦ã—ã¾ã„ã¾ã™ã€‚ ãã‚“ãªè¦å‘Šãƒ€ã‚¤ã‚¢ãƒã‚°ãŒå‡ºã‚‹ã®ã¯ãƒ¦ãƒ¼ã‚¶ãƒ¼ãƒ•ãƒ¬ãƒ³ãƒ‰ãƒªãƒ¼ã˜ã‚ƒãªã„ã®ã§ã€ãã‚Œã‚’é˜²ãæ–¹æ³•ã€‚ è§£æ±ºæ–¹æ³•ã¯ç°¡å˜ã§ã€ãƒ¬ã‚¹ãƒãƒ³ã‚¹ãƒ˜ãƒƒãƒ€ã§å¯¾å¿œã§ããªã„ãªã‚‰ãƒ¬ã‚¹ãƒãƒ³ã‚¹ãƒœãƒ‡ã‚£ãƒ¼ã§å¯¾å‡¦ã™ã‚Œã°OKï¼ˆYahoo!ãªã‚“ã‹ã‚‚ã“ã®æ–¹æ³•ã‚’ä½¿ã£ã¦ã„ã‚‹ã‚ˆã†ã§ã™ï¼‰ã€‚ãŸã¨ãˆã°ã€èªè¨¼å¾Œã€*1ã®ã¨ã“ã‚ã§ä»¥ä¸‹ã®ã‚ˆã†ãªHTMLã‚’è¿”ã—ã¦ã‚ã’ã‚Œã°ã€ãƒ–ãƒ©ã‚¦ã‚¶ãŒHTTPãªãƒšãƒ¼ã‚¸ã«ãƒªãƒ€ã‚¤ãƒ¬ã‚¯ãƒˆã—ã¦ãã‚Œã‚‹ã‚ã‘ã§ã™ã€‚ <html> <head> <meta http-equiv="refresh" content="
hacked 2007/03/17
ssl

tips

https

http

javascript

security
ãƒªãƒ³ã‚¯
NTTãƒ‡ãƒ¼ã‚¿å…¬å¼ã‚µã‚¤ãƒˆ
NTTãƒ‡ãƒ¼ã‚¿ï¼ˆå›½å†…äº‹æ¥ä¼šç¤¾ï¼‰ ä¼æ¥æƒ…å ± ãƒ—ãƒãƒ•ã‚£ãƒ¼ãƒ« ç¤¾é•·ãƒ¡ãƒƒã‚»ãƒ¼ã‚¸ å½¹å“¡ä¸€è¦§ NTTãƒ‡ãƒ¼ã‚¿ã®ãƒ†ã‚¯ãƒŽãƒã‚¸ãƒ¼ NTTãƒ‡ãƒ¼ã‚¿ã‚°ãƒ«ãƒ¼ãƒ—ï¼ˆæŒæ ªä¼šç¤¾ï¼‰ ä¼æ¥æƒ…å ± ãƒ—ãƒãƒ•ã‚£ãƒ¼ãƒ« ç¤¾é•·ãƒ¡ãƒƒã‚»ãƒ¼ã‚¸ Our Way å½¹å“¡ä¸€è¦§ ã‚µã‚¹ãƒ†ãƒŠãƒ“ãƒªãƒ†ã‚£ ã‚°ãƒ«ãƒ¼ãƒ—ä¼šç¤¾ å”è³›ãƒ»æ–‡åŒ–æ´»å‹• å–å¼•å…ˆä¼æ¥ã®çš†æ§˜ã¸ NTT DATA, Inc.ï¼ˆæµ·å¤–äº‹æ¥ä¼šç¤¾ï¼‰ ä¼æ¥æƒ…å ±
hacked 2007/02/16
Linux

security
ãƒªãƒ³ã‚¯
å®‰å…¨ãªWebã‚µã‚¤ãƒˆã®ä½œã‚Šæ–¹ï¼ˆPDFï¼‰
hacked 2007/01/18
security

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£

IPA
ãƒªãƒ³ã‚¯
1 2 æ¬¡ã®ãƒšãƒ¼ã‚¸