[B! apache] hasegawayosukeã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

hasegawayosuke id:hasegawayosuke

apacheã«é–¢ã™ã‚‹hasegawayosukeã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯ (6)

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

${{author_name}}$
{{author_name}}{{created}}
{{ #comment }}{{ comment }}{{ /comment }}
- {{ label }}

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

Apache HTTP Server 2.4.3 ãŒãƒªãƒªãƒ¼ã‚¹ã•ã‚Œã¾ã—ãŸ: æ—¥èªŒ
Apache HTTP Server 2.4.3 ãŒãƒªãƒªãƒ¼ã‚¹ã•ã‚Œã¾ã—ãŸã€‚ã¾ãŸã€2.4.2 ã‚‚ä»Šå¹´ã®4æœˆã«ãƒªãƒªãƒ¼ã‚¹ã•ã‚Œã¦ã„ãŸã®ã§ã€ãã‚Œã«ã¤ã„ã¦ã‚‚ãƒªãƒªãƒ¼ã‚¹è¨˜äº‹ã‚’ www.apache.jp ã«æ›¸ãã¾ã—ãŸ Apache HTTP Server 2.4.2 ãŒãƒªãƒªãƒ¼ã‚¹ã•ã‚Œã¾ã—ãŸ Apache HTTP Server 2.4.3 ãŒãƒªãƒªãƒ¼ã‚¹ã•ã‚Œã¾ã—ãŸ CVE ã«ã¤ã„ã¦ã®ã¿ã—ã‹è¨€åŠã—ã¦ã„ãªã„ã®ã§ã™ãŒã€CHANGES è¦‹ã‚‹ã¨èˆˆå‘³æ·±ã„å¤‰æ›´ç‚¹ãŒã‚ã‚‹ã‚ˆã†ã§ã™ã€‚2.4.3 ã® CHANGES ã«ã‚ˆã‚‹ã¨ *) httpd.conf: Added configuration directives to set a bad_DNT environment variable based on User-Agent and to remove the DNT header field from incoming requ
hasegawayosuke 2012/08/24
ie10

dnt

apache
ãƒªãƒ³ã‚¯
Google Code Archive - Long-term storage for Google Code Project Hosting.
Code Archive Skip to content Google About Google Privacy Terms
hasegawayosuke 2012/04/18
"mod_spdy is a SPDY module for Apache 2.2 that allows your web server to take advantage of SPDY features"

apache

google

spdy
ãƒªãƒ³ã‚¯
GitHub - owasp-modsecurity/ModSecurity: ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range of attacks again
hasegawayosuke 2011/01/20
xss

apache
ãƒªãƒ³ã‚¯
Big Sky :: Apacheã§ã‚»ã‚ãƒ¥ã‚¢ãªã‚¢ã‚¯ã‚»ã‚¹åˆ¶é™ã‚’æä¾›ã§ãã‚‹ãƒ¢ã‚¸ãƒ¥ãƒ¼ãƒ« mod_access_token ã‚’è©¦ã—ãŸã€‚
livedoor è£½å“ã§ mod_access_token ã¨ã„ã†ã®ãŒå‡ºãŸã¿ãŸã„ã§ã™ã€‚ livedoor ãƒ©ãƒœã€ŒEDGEã€ é–‹ç™ºæ—¥èªŒ : ã€Œmod_access_tokenã€ã®é…å¸ƒé–‹å§‹ã¨ã€ŒEDGE srcã€å…¬é–‹ã®ãŠçŸ¥ã‚‰ã› - livedoor Blogï¼ˆãƒ–ãƒã‚°ï¼‰ ã‚¦ã‚§ãƒ–ã‚µã‚¤ãƒˆä¸Šã®ç”»åƒã‚„ãƒ•ã‚¡ã‚¤ãƒ«ã«æœ‰åŠ¹æœŸé™ã‚’æŒ‡å®šã—ã¦ã€ãƒ¦ãƒ¼ã‚¶ãƒ¼ã«ä¸€æ™‚çš„ãªãƒ€ã‚¦ãƒ³ãƒãƒ¼ãƒ‰ã‚’è¨±å¯ã™ã‚‹ã€ãƒ©ã‚¤ãƒ–ãƒ‰ã‚¢ã§ç‹¬è‡ªé–‹ç™ºã—ãŸApacheãƒ¢ã‚¸ãƒ¥ãƒ¼ãƒ«ã§ã™ã€‚ã“ã®ãƒ¢ã‚¸ãƒ¥ãƒ¼ãƒ«ã‚’Apache Webã‚µãƒ¼ãƒã«çµ„ã¿è¾¼ã‚€ã“ã¨ã«ã‚ˆã‚Šã€ç”»åƒã‚„ãƒ•ã‚¡ã‚¤ãƒ«ã‚’ã‚¦ã‚§ãƒ–ä¸Šã§å…¬é–‹ã™ã‚‹ã¨ãã«æœ‰åŠ¹æœŸé™ã‚’ã¤ã‘ã‚‹ã“ã¨ãŒã§ãã‚‹ã‚ˆã†ã«ãªã‚Šã€Webã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã¨çµ„ã¿åˆã‚ã›ã‚‹äº‹ã§å…¬é–‹ç¯„å›²ã®åˆ¶å¾¡ã‚’è¡Œãªã†äº‹ãŒå¯èƒ½ã«ãªã‚Šã¾ã™ã€‚ http://blog.livedoor.jp/edge_labs/archives/717201.html modaccesstoken - Google Co
hasegawayosuke 2009/02/17
apache

security
ãƒªãƒ³ã‚¯
RTFM
ãƒ‰ã‚ãƒ¥ãƒ¡ãƒ³ãƒˆã‚’èªã¾ãªã„è¼© çµè«–: ããã‚‹ãªã€‚ãƒ‰ã‚ãƒ¥ãƒ¡ãƒ³ãƒˆã«æ›¸ã„ã¦ã‚ã‚‹ã¨ã‚ã‹ã£ã¦ã„ã‚‹ã®ã«ãªãœ google ã«é ¼ã‚‹? å··é–“ã§ã‚ˆãè¦‹ã‚‰ã‚Œã‚‹ã€ã—ã‹ã— Apache ã®é…å¸ƒã‚¢ãƒ¼ã‚«ã‚¤ãƒ–ä¸€å¼ã«å«ã¾ã‚Œã¦ã„ã‚‹ãƒ‰ã‚ãƒ¥ãƒ¡ãƒ³ãƒˆã‚’ã¡ã‚ƒã‚“ã¨èªã‚“ã§ã„ã‚Œã°èµ·ããªã„ã¯ãšã®è¨å®šãƒŸã‚¹ã‚„ã€ãƒŸã‚¹ã§ã¯ãªã„ãŒãµã—ãŽãªè¨å®šã«ã¤ã„ã¦ã€‚ <Limit>: ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ä¸Šã®ãƒªã‚¹ã‚¯ãŒã‚ã‚‹ã®ã§ã™ã¿ã‚„ã‹ã«ç¢ºèªãƒ»ä¿®æ£ã•ã‚ŒãŸã— AddDefaultCharset: ç©´ã§ã¯ãªã„ãŒä¿®æ£ãŒå¿…è¦ LanguagePriority: ã»ã¨ã‚“ã©ã®ã‚µã‚¤ãƒˆã§ã¯ç„¡æ„å‘³ ScriptAlias: ç®¡ç†è€…ã§ãªãã‚¨ãƒ³ãƒ‰ãƒ¦ãƒ¼ã‚¶ãŒãƒãƒžã‚‹ã®ã¯ã—ã‹ãŸãªã„ã‘ã‚Œã© SetEnvIf: ã©ã“ã‚‚é–“é•ã£ã¦ã¯ã„ãªã„ã®ã ãŒâ€¦ Apache ã®ãƒ‰ã‚ãƒ¥ãƒ¡ãƒ³ãƒˆã¯æ—¥æœ¬èªžæœªè¨³ãªã¨ã“ã‚ãŒä¸€éƒ¨æ®‹ã£ã¦ã„ã‚‹ã‘ã‚Œã©ã€å…¨ä½“ã¨ã—ã¦éžå¸¸ã«ã‚ˆãã¾ã¨ã¾ã£ãŸæƒ…å ±æºã§ã‚ã‚‹ã€‚å°‘ãªãã¨ã‚‚ã€ã€Œã“ã®ãƒ‡ã‚£ãƒ¬ã‚¯ãƒ†ã‚£ãƒ–ã‚’ã©ã†è¨å®šã™ã‚‹ã¨ã©ã†å‹•ã
hasegawayosuke 2008/11/11
ã€Œæ‚ªæ„ã‚ã‚‹ CGI ã‚’ .jpg ãªã©ã®æ‹¡å¼µåã§å½è£…ã—ã¦ã‚¢ãƒƒãƒ—ãƒãƒ¼ãƒ‰ã—ã¦ã‚„ã‚‹ã¨ã€ãã‚Œã‚’ãƒ€ã‚¦ãƒ³ãƒãƒ¼ãƒ‰ã™ã‚‹ã“ã¨ã§ã‚µãƒ¼ãƒã‚’ã‚¯ãƒ©ãƒƒã‚¯ã§ãã‚‹ã€ via http://bakera.jp/htmlbbs/inthread/5129

apache

Windows

security
ãƒªãƒ³ã‚¯
Apache 2.2.5 Undefined Charset UTF-7 XSS Vulnerability - CXSecurity.com
hasegawayosuke 2007/09/13
xss

apache

utf-7
ãƒªãƒ³ã‚¯
1