JSONファイルã®æœ«å°¾ã«æ”¹è¡ŒãŒãªã„ã®ã§ã€å‡¦ç†ã‚’ミスã£ã¦ã—ã¾ã£ãŸã‚ˆ
åçœã‚’ã“ã‚ã¦ã€è¨˜éŒ²ã«æ®‹ã—ã¦ãŠã。
Azure DataLake Storageã‹ã‚‰ã€Azure Storage Explorer経由ã§ãƒ€ã‚¦ãƒ³ãƒãƒ¼ãƒ‰ã—ãŸJSONファイル。
レコードã¯ãƒ•ã‚¡ã‚¤ãƒ«ã”ã¨ã«è¤‡æ•°å…¥ã£ã¦ã„る。
シンプルã«catã§é€£çµã—ã¦å‡¦ç†ã—ãŸã®ã ã‘ã©ã€æœ«å°¾ã«ã«ã ã‘改行ãŒãªã„状態ã ã£ãŸã®ã§ã€æ¬¡ã®ãƒ•ã‚¡ã‚¤ãƒ«ã®å…ˆé è¡ŒãŒå‡¦ç†ã•ã‚Œãªã„ã“ã¨ã«ãªã£ã¦ã—ã¾ã£ãŸã€‚
オリジナルã®ãƒ‡ãƒ¼ã‚¿ã‚’åŠ å·¥ã™ã‚‹ã®ã¯ã€ä»Šå¾Œã®ãŸã‚ã«ã‚‚æ°—ãŒå¼•ã‘ã‚‹ã—ã€ãƒ¯ãƒ³ãƒ©ã‚¤ãƒŠãƒ¼ã§æ¸ˆã¾ãªããªã‚‹ã®ã‚‚ダサã„。
ã“ã†ã—ãŸã‚‰ã†ã¾ãã„ãã®ã§ã¯ãªã„ã‹ãªã€‚
$ find ./* -type f -exec grep '^{' {} \;
一応ã†ã¾ãã„ã£ãŸæ„Ÿã˜ã€‚
faboollasermac を削除ã™ã‚‹
SmartInstallerMac_v290.pkg を入れãŸã®ã ã‘ã©ã€ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ©ãƒ¼ã«ã‚¢ãƒ³ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«æ©Ÿèƒ½ãŒãªã„。
ãŸã„ã¸ã‚“クソãªã‚½ãƒ•ãƒˆã‚¦ã‚¨ã‚¢ã§ã‚る。
ãã®ãã›ã€ãƒãƒ¼ã‚«ãƒ«ã§Webサーãƒãƒ¼ã‚’å‹•ã‹ã—続ã‘ã‚‹ã¨ã„ã†ã•ã‚‰ã«ã‚¯ã‚½ãªä»•æ§˜ã€‚
ãã—ã¦ã€DXFãŒèªã¿è¾¼ã‚ãªã„ã¨ã„ã†ã©ã†ã—よã†ã‚‚ãªãクソ。
ãªã®ã§å‰Šé™¤ã€‚
$ pkgutil --pkgs | grep smartdiys com.smartdiys.faboollaser
何ãŒå…¥ã£ãŸã‹èª¿ã¹ã‚‹ã€‚
$ pkgutil --files com.smartdiys.faboollaser LaunchDaemons LaunchDaemons/com.smartdiys.faboollaser.plist faboollasermac faboollasermac/dfu faboollasermac/dfu/bin faboollasermac/dfu/bin/dfu-util faboollasermac/dfu/lib faboollasermac/dfu/lib/libusb-1.0.0.dylib faboollasermac/faboollaser.app faboollasermac/faboollaser.app/Contents faboollasermac/faboollaser.app/Contents/Frameworks faboollasermac/faboollaser.app/Contents/Info.plist faboollasermac/faboollaser.app/Contents/MacOS faboollasermac/faboollaser.app/Contents/MacOS/MacOS.so faboollasermac/faboollaser.app/Contents/MacOS/Nav.so faboollasermac/faboollaser.app/Contents/MacOS/Python faboollasermac/faboollaser.app/Contents/MacOS/_AE.so faboollasermac/faboollaser.app/Contents/MacOS/_Ctl.so faboollasermac/faboollaser.app/Contents/MacOS/_Dlg.so faboollasermac/faboollaser.app/Contents/MacOS/_Evt.so faboollasermac/faboollaser.app/Contents/MacOS/_File.so faboollasermac/faboollaser.app/Contents/MacOS/_Menu.so faboollasermac/faboollaser.app/Contents/MacOS/_Qd.so faboollasermac/faboollaser.app/Contents/MacOS/_Res.so faboollasermac/faboollaser.app/Contents/MacOS/_Win.so faboollasermac/faboollaser.app/Contents/MacOS/_codecs_cn.so faboollasermac/faboollaser.app/Contents/MacOS/_codecs_hk.so faboollasermac/faboollaser.app/Contents/MacOS/_codecs_iso2022.so faboollasermac/faboollaser.app/Contents/MacOS/_codecs_jp.so faboollasermac/faboollaser.app/Contents/MacOS/_codecs_kr.so faboollasermac/faboollaser.app/Contents/MacOS/_codecs_tw.so faboollasermac/faboollaser.app/Contents/MacOS/_collections.so faboollasermac/faboollaser.app/Contents/MacOS/_ctypes.so faboollasermac/faboollaser.app/Contents/MacOS/_functools.so faboollasermac/faboollaser.app/Contents/MacOS/_hashlib.so faboollasermac/faboollaser.app/Contents/MacOS/_heapq.so faboollasermac/faboollaser.app/Contents/MacOS/_io.so faboollasermac/faboollaser.app/Contents/MacOS/_json.so faboollasermac/faboollaser.app/Contents/MacOS/_locale.so faboollasermac/faboollaser.app/Contents/MacOS/_multibytecodec.so faboollasermac/faboollaser.app/Contents/MacOS/_random.so faboollasermac/faboollaser.app/Contents/MacOS/_scproxy.so faboollasermac/faboollaser.app/Contents/MacOS/_socket.so faboollasermac/faboollaser.app/Contents/MacOS/_ssl.so faboollasermac/faboollaser.app/Contents/MacOS/_struct.so faboollasermac/faboollaser.app/Contents/MacOS/app faboollasermac/faboollaser.app/Contents/MacOS/array.so faboollasermac/faboollaser.app/Contents/MacOS/binascii.so faboollasermac/faboollaser.app/Contents/MacOS/bz2.so faboollasermac/faboollaser.app/Contents/MacOS/cPickle.so faboollasermac/faboollaser.app/Contents/MacOS/cStringIO.so faboollasermac/faboollaser.app/Contents/MacOS/datetime.so faboollasermac/faboollaser.app/Contents/MacOS/fcntl.so faboollasermac/faboollaser.app/Contents/MacOS/frontend faboollasermac/faboollaser.app/Contents/MacOS/grp.so faboollasermac/faboollaser.app/Contents/MacOS/include faboollasermac/faboollaser.app/Contents/MacOS/itertools.so faboollasermac/faboollaser.app/Contents/MacOS/lib faboollasermac/faboollaser.app/Contents/MacOS/math.so faboollasermac/faboollaser.app/Contents/MacOS/operator.so faboollasermac/faboollaser.app/Contents/MacOS/readline.so faboollasermac/faboollaser.app/Contents/MacOS/resource.so faboollasermac/faboollaser.app/Contents/MacOS/select.so faboollasermac/faboollaser.app/Contents/MacOS/strop.so faboollasermac/faboollaser.app/Contents/MacOS/termios.so faboollasermac/faboollaser.app/Contents/MacOS/time.so faboollasermac/faboollaser.app/Contents/MacOS/unicodedata.so faboollasermac/faboollaser.app/Contents/MacOS/zlib.so faboollasermac/faboollaser.app/Contents/Resources faboollasermac/faboollaser.app/Contents/Resources/frontend faboollasermac/faboollaser.app/Contents/Resources/frontend/admin.js faboollasermac/faboollaser.app/Contents/Resources/frontend/app.css faboollasermac/faboollaser.app/Contents/Resources/frontend/app.html faboollasermac/faboollaser.app/Contents/Resources/frontend/app.js faboollasermac/faboollaser.app/Contents/Resources/frontend/assetsfa19c0ffd7c43e9906a09d1c5f6a7b68.png faboollasermac/faboollaser.app/Contents/Resources/frontend/vendor.js faboollasermac/faboollaser.app/Contents/Resources/icon-windowed.icns faboollasermac/faboollaser.app/Contents/Resources/include faboollasermac/faboollaser.app/Contents/Resources/include/python2.7 faboollasermac/faboollaser.app/Contents/Resources/include/python2.7/pyconfig.h faboollasermac/faboollaser.app/Contents/Resources/lib faboollasermac/faboollaser.app/Contents/Resources/lib/python2.7 faboollasermac/faboollaser.app/Contents/Resources/lib/python2.7/config faboollasermac/faboollaser.app/Contents/Resources/lib/python2.7/config/Makefile
ãªã‚“ã‹ã€ãƒ•ã‚¡ã‚¤ãƒ«ã¯è‡ªåˆ†ã§æ¶ˆã•ãªã„ã¨ã„ã‘ãªã„らã—ã„。
ã»ã‚“ã©ã‚¯ã‚½ãªã‚¢ãƒ—リをã‚ã‚ŠãŒã¨ã†ã€‚
ã‚“ã§ã€ã“ã‚Œã©ã“ã«å…¥ã£ãŸã®ã•ï¼Ÿ
$ sudo find / | grep faboollasermac Password: /Library/faboollasermac /Library/faboollasermac/dfu /Library/faboollasermac/dfu/bin /Library/faboollasermac/dfu/bin/dfu-util /Library/faboollasermac/dfu/lib /Library/faboollasermac/dfu/lib/libusb-1.0.0.dylib /Library/faboollasermac/faboollaser.app /Library/faboollasermac/faboollaser.app/Contents /Library/faboollasermac/faboollaser.app/Contents/Frameworks /Library/faboollasermac/faboollaser.app/Contents/Info.plist /Library/faboollasermac/faboollaser.app/Contents/MacOS /Library/faboollasermac/faboollaser.app/Contents/MacOS/MacOS.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/Nav.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/Python /Library/faboollasermac/faboollaser.app/Contents/MacOS/_AE.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_Ctl.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_Dlg.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_Evt.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_File.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_Menu.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_Qd.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_Res.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_Win.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_codecs_cn.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_codecs_hk.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_codecs_iso2022.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_codecs_jp.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_codecs_kr.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_codecs_tw.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_collections.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_ctypes.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_functools.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_hashlib.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_heapq.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_io.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_json.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_locale.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_multibytecodec.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_random.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_scproxy.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_socket.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_ssl.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/_struct.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/app /Library/faboollasermac/faboollaser.app/Contents/MacOS/array.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/binascii.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/bz2.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/cPickle.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/cStringIO.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/datetime.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/fcntl.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/frontend /Library/faboollasermac/faboollaser.app/Contents/MacOS/grp.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/include /Library/faboollasermac/faboollaser.app/Contents/MacOS/itertools.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/lib /Library/faboollasermac/faboollaser.app/Contents/MacOS/math.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/operator.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/readline.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/resource.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/select.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/strop.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/termios.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/time.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/unicodedata.so /Library/faboollasermac/faboollaser.app/Contents/MacOS/zlib.so /Library/faboollasermac/faboollaser.app/Contents/Resources /Library/faboollasermac/faboollaser.app/Contents/Resources/frontend /Library/faboollasermac/faboollaser.app/Contents/Resources/frontend/admin.js /Library/faboollasermac/faboollaser.app/Contents/Resources/frontend/app.css /Library/faboollasermac/faboollaser.app/Contents/Resources/frontend/app.html /Library/faboollasermac/faboollaser.app/Contents/Resources/frontend/app.js /Library/faboollasermac/faboollaser.app/Contents/Resources/frontend/assetsfa19c0ffd7c43e9906a09d1c5f6a7b68.png /Library/faboollasermac/faboollaser.app/Contents/Resources/frontend/vendor.js /Library/faboollasermac/faboollaser.app/Contents/Resources/icon-windowed.icns /Library/faboollasermac/faboollaser.app/Contents/Resources/include /Library/faboollasermac/faboollaser.app/Contents/Resources/include/python2.7 /Library/faboollasermac/faboollaser.app/Contents/Resources/include/python2.7/pyconfig.h /Library/faboollasermac/faboollaser.app/Contents/Resources/lib /Library/faboollasermac/faboollaser.app/Contents/Resources/lib/python2.7 /Library/faboollasermac/faboollaser.app/Contents/Resources/lib/python2.7/config /Library/faboollasermac/faboollaser.app/Contents/Resources/lib/python2.7/config/Makefile (snip)
$ sudo find / | grep LaunchDaemons | grep smartdiys /Library/LaunchDaemons/com.smartdiys.faboollaser.plist
å ´æ‰€ã¯ã‚ã‹ã£ãŸã€‚
$ sudo rm -rf /Library/faboollasermac $ sudo rm /Library/LaunchDaemons/com.smartdiys.faboollaser.plist
ãƒ‘ãƒƒã‚±ãƒ¼ã‚¸æƒ…å ±ã‚‚å‰Šé™¤ã—ã¦ãŠã。
$ sudo pkgutil --forget com.smartdiys.faboollaser Forgot package 'com.smartdiys.faboollaser' on '/'.
ã‚„ã£ã¨ãã‚Œã„ã«ãªã£ãŸã€‚
ã—ã‹ã—ã€ã¾ã プãƒã‚»ã‚¹ãŒå‹•ã„ã¦ã„る模様。
$ ps ax | grep fabool 36832 ?? Ss 3:01.69 /Library/faboollasermac/faboollaser.app/Contents/MacOS/app $ sudo kill 36832
ã©ã£ã‹ã«ãƒ‡ãƒ¼ã‚¿ã‚‚ä¿æŒã—ã¦ã„ã‚‹ã¨æ€ã†ã®ã ã‘ã©ã€ã“ã¡ã‚‰ã¯UI上ã§å…¨éƒ¨å‰Šé™¤ã—ã¦ã‹ã‚‰ä½œæ¥ã—ãŸã®ã§ä¸æ˜Žã€‚
frpを使ã£ãŸNATé…下マシンã®ä¸ç¶™æŽ¥ç¶š
ã¡ã‚‡ã£ã¨ã—ãŸä½™èˆˆã«ä½¿ã†ã®ã«ã€goã§æ›¸ã‹ã‚ŒãŸfrpを使ã£ã¦ã€NATé…下ã®raspi上ã®owncloudã‚’ã€ã•ãらã®ã‚¯ãƒ©ã‚¦ãƒ‰ã«ç½®ã„ãŸã‚¤ãƒ³ã‚¹ã‚¿ãƒ³ã‚¹ã§ä¸ç¶™æŽ¥ç¶šã•ã›ã¦ã¿ãŸã€‚
有料ã«ãªã£ã¡ã‚ƒã£ãŸã€ngrokを自å‰ã§ã‚„ã‚‹çš„ãªã‚‚ã®ã€‚
frpã®æ—¥æœ¬èªžã®è³‡æ–™ã¯ãªã„ã‘ã©ã€ä¸å›½èªžã¯ã„ã£ã±ã„ã‚ã‹ã‚Šã‚„ã™ã„ã®ãŒã‚ã£ãŸw
androidã®owncloudクライアントβ(99円)ã‹ã‚‰ã‚‚普通ã«æŽ¥ç¶šã—ã¦ã„る。
proxyé…下ã‹ã‚‰ã®æŽ¥ç¶šã‚‚å•é¡Œãªã—。
ã¾ã£ãŸãã®ã‚¼ãƒã‹ã‚‰ï¼’時間ãらã„。
一番時間ã‹ã‹ã£ãŸã®ã¯æœ¬é¡Œã§ã¯ãªã„owncloud。
frpã¯makeã›ãšã«ãƒã‚¤ãƒŠãƒªé…布ã®å„アーã‚テクãƒãƒ£å‘ã‘ã®ã‚’使ã£ãŸã€‚
frpã¯ã€sshã ã‘ãªã‚‰è¨å®šã¯è¶…ç°¡å˜ã ã£ãŸã€‚
webã®ä¸ç¶™ã¯ç‹¬ç‰¹ãªæ„Ÿã˜ã§ã‚ã‚“ã©ãã•ã„。何ヶ所ã‹ã¡ã‚‡ã£ã¨è©¦è¡ŒéŒ¯èª¤ã‚ã£ãŸã€‚
TSL化ã¨frpã®èªè¨¼ã¯è¨å®šã—ã¦ã„ãªã„。
owncloud config.iniã®trusted_hostã®è¨å®šã¯ã€ã•ãらå´ã®IPã‚’ãƒãƒ¼ãƒ‰ã‚³ãƒ¼ãƒˆã—ã¦ã—ã¾ã£ãŸã®ã§è§£æ±ºã—ã¦ãªã„。
*ã§ã¯é€šã‚‰ãªã‹ã£ãŸã€‚制é™ã‚’ã—ãªã„方法ã¯ãªã„ã‚“ã ã‚ã†ã‹ï¼Ÿ
数日使ã£ã¦ã¿ãŸãŒã€è¶…安定ã—ã¦ã„る。
速度もã€ã¾ãã“ã‚“ãªã‚‚ã‚“ã˜ã‚ƒãªã„ã‹ãªã¨ã„ã†æ„Ÿã˜ã€‚
èªè¨¼å¼·åŒ–ã¨TLS化ã—ãŸã‚‰ãã‚Œã§ãã®ã¾ã¾ä½¿ã£ã¦ã„ã„ã‹ã‚‚。
ownClowdã®ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆãŒã‚¤ãƒžã‚¤ãƒã ã‘ã©ã€‚ãã‚Œã¯DAVクライアントã§ã„ã„ã‹ãªã€‚
ä¸ç¶™ã‚µãƒ¼ãƒãƒ¼å´ã¯ã©ã®ãらã„ã®æŽ¥ç¶šã‚’許ã™ã®ã‹ã€ã©ã®ãらã„ã®ãƒ«ãƒ¼ãƒ«ã‚’書ã‘ã‚‹ã®ã‹ã€ã‚ã¨ãƒ¢ãƒ‹ã‚¿ã‚µãƒ¼ãƒãƒ¼ã‚’èµ·å‹•ã—ã¦ã¿ã¦ãªã„ã®ã§ã€ãれを見ã¦ã¿ã‚‹ã‹ã€‚daemonã‚’systemdé…下ã«ã™ã‚‹ã®ã‚‚ã„ã‚‹ãªã€‚
NASã‚„WebCamã«frp組ã¿è¾¼ã‚“ã§ã¿ã‚‹ã®ã‚‚ã„ã„ã‹ã‚‚。
sourceã‹ã‚‰ã®ãƒ“ルドもやã£ã¦ã¿ãªã„ã¨ã€‚
ã—ã‹ã—ã€æŠ€æ›¸è©±äººä¼ ã®æº–å‚™ã®ãŒå…ˆã‹w
ã¾ã 原稿ã§ãã¦ãªã„w
å°åˆ·ã¨è£½æœ¬ã‚‚手ã§ã‚„ã‚‹ã®ã§æ™‚é–“ãŒè‹¦ã—ã„。
procã‹ã‚‰uuid作るã¨ã€14æ–‡å—ç›®ãŒ4ã«ãªã‚‹
uuidをファイルåã«ã—ã¦ãŸãã•ã‚“作ã£ãŸã‚‚ã®ã‚’lsã—ã¦æ°—ãŒã¤ã„ãŸã€‚
漫然ã¨è¡¨ç¤ºã—ã¦ãŸã ã‘ãªã‚‰æ°—ãŒä»˜ã‹ãªã‹ã£ãŸã‹ã‚‚。
å†ç¾ãƒ†ã‚¹ãƒˆã€‚
#!/bin/bash
for i in `seq 1000`
do
cat /proc/sys/kernel/random/uuid | awk -F'-' '{print $1$2$3$4$5}u' >> test.log
done
cat test.log| cut -c 13 | sort | uniq -c
$ ./test.sh
1000 4
é¢ç™½ã„。
環境ã¯AWS t2.microã§ubuntu 16.04.4。
$ uname -a
Linux ip-xxx-xxx-xxx-xxx 4.4.0-1049-aws #58-Ubuntu SMP Fri Jan 12 23:17:09 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux
$ cat /etc/os-release
NAME="Ubuntu"
VERSION="16.04.4 LTS (Xenial Xerus)"
ID=ubuntu
ID_LIKE=debian
PRETTY_NAME="Ubuntu 16.04.4 LTS"
VERSION_ID="16.04"
HOME_URL="http://www.ubuntu.com/"
SUPPORT_URL="http://help.ubuntu.com/"
BUG_REPORT_URL="http://bugs.launchpad.net/ubuntu/"
VERSION_CODENAME=xenial
UBUNTU_CODENAME=xenial
UUIDã£ã¦ã€å®Œå…¨ä¹±æ•°ã‹ã¨æ€ã£ã¦ãŸã‚‰ã€ver4ã§ã¯ãƒãƒªã‚¢ãƒ³ãƒˆã¨ãƒãƒ¼ã‚¸ãƒ§ãƒ³æƒ…å ±ãŒå…¥ã‚‹ã®ã。
16進表記ã§ã¯RRRRRRRR-RRRR-4RRR-rRRR-RRRRRRRRRRRRã¨ãªã‚Šã€ãƒãƒªã‚¢ãƒ³ãƒˆ(10)ã¨ãƒãƒ¼ã‚¸ãƒ§ãƒ³(0100)を除ãã™ã¹ã¦ã®ãƒ“ットを乱数(R:122ビット)ã§ç”Ÿæˆã™ã‚‹ã€‚
è¦å‰‡æ€§ãŒåŸ‹ã‚‚ã‚Œã¦ã„ã‚‹ã®ã§ã‚ã‚Œã°ã€æ‰±ã„ã«ã¯æ³¨æ„ã—ãªã„ã¨ã„ã‘ãªã„ãª...
High Sierraã«ã—ãŸã‚‰ã€sshã§ãƒ‘スフレーズを必ãšèžã‹ã‚Œã‚‹ã‚ˆã†ã«ãªã£ã¦ã‚ã‚“ã©ãã•ã„
Sierraã‹ã‚‰ã ãã†ã§ã™ã‘ã©ã€‚
$ vi ~/.ssh/config
UseRoaming no
ã“ã‚Œã—ã‹æ›¸ã„ã¦ãªã‹ã£ãŸâ€¦
以下追記。
ServerAliveInterval 1200
ServerAliveCountMax 12
TCPKeepAlive yes
Compression yes
AddKeysToAgent yes
UseKeychain yes
GSSAPIAuthentication no
ã“ã‚“ãªæ„Ÿã˜ã«ã€‚
ã—ã‹ã—ã€åˆå›žã¯åŒã˜ã‚ˆã†ã«èžã‹ã‚Œã‚‹ã€‚
ãã®ã‚ã¨ã¯è¦šãˆã¦ãれるよã†ã 。
スペクターã¨ãƒ¡ãƒ«ãƒˆãƒ€ã‚¦ãƒ³ã®ã‚·ã‚§ãƒ«ã‚¹ã‚¯ãƒªãƒ—ト簡易ãƒã‚§ãƒƒã‚«ãƒ¼ãŒã‚ã£ãŸã®ã§è©¦ã—ã¦ã¿ãŸ
speed47/spectre-meltdown-checker: Spectre & Meltdown vulnerability/mitigation checker for Linux
https://github.com/speed47/spectre-meltdown-checker
何ã‹å®Ÿè¡Œã—ã¦èª¿ã¹ã‚‹ã‚ã‘ã§ã¯ãªãã€ã„ã‚ã‚“ãªãƒ‘ラメータã‹ã‚‰çŠ¶æ…‹ã‚’調ã¹ã‚‹ã ã‘ã®ã‚ˆã†ã€‚
ダウンãƒãƒ¼ãƒ‰ã—ã¦å®Ÿè¡Œã—ã¦ã¿ã‚‹ã€‚
ã•ãらã®ã‚¯ãƒ©ã‚¦ãƒ‰
ターゲットã¯ã€ã¾ã 対ç–ãŒã•ã‚Œã¦ã„ãªã„"ã•ãらã®ã‚¯ãƒ©ã‚¦ãƒ‰"ã§ã®ã‚¤ãƒ³ã‚¹ã‚¿ãƒ³ã‚¹ã€‚
ダウンãƒãƒ¼ãƒ‰ã—ã¦å®Ÿè¡Œæ¨©é™ã‚’与ãˆã‚‹ã€‚
ubuntu@psv:~/test$ wget https://raw.githubusercontent.com/speed47/spectre-meltdown-checker/master/spectre-meltdown-checker.sh --2018-01-16 13:33:29-- https://raw.githubusercontent.com/speed47/spectre-meltdown-checker/master/spectre-meltdown-checker.sh Resolving raw.githubusercontent.com (raw.githubusercontent.com)... 151.101.228.133 Connecting to raw.githubusercontent.com (raw.githubusercontent.com)|151.101.228.133|:443... connected. HTTP request sent, awaiting response... 200 OK Length: 36439 (36K) [text/plain] Saving to: ‘spectre-meltdown-checker.sh’ spectre-meltdown-ch 100%[===================>] 35.58K --.-KB/s in 0.03s 2018-01-16 13:33:29 (1.26 MB/s) - ‘spectre-meltdown-checker.sh’ saved [36439/36439] ubuntu@psv:~/test$ chmod +x spectre-meltdown-checker.sh
rootã§å®Ÿè¡Œã—ã‚ã£ã¦ã“ã¨ã ã‘ã©ã€ãƒ¦ãƒ¼ã‚¶ãƒ¼æ¨©é™ã§ã‚‚ã‚る程度ã¯ã‚ã‹ã‚‹ã€‚
ubuntu@psv:~/test$ ./spectre-meltdown-checker.sh Spectre and Meltdown mitigation detection tool v0.31 Note that you should launch this script with root privileges to get accurate information. We'll proceed but you might see permission denied errors. To run it as root, you can try the following command: sudo ./spectre-meltdown-checker.sh Checking for vulnerabilities against running kernel Linux 4.4.0-96-generic #119-Ubuntu SMP Tue Sep 12 14:59:54 UTC 2017 x86_64 CPU is Intel(R) Xeon(R) CPU E5-2640 0 @ 2.50GHz ./spectre-meltdown-checker.sh: 1: ./spectre-meltdown-checker.sh: cannot open /boot/vmlinuz-4.4.0-96-generic: Permission denied ./spectre-meltdown-checker.sh: 1: ./spectre-meltdown-checker.sh: cannot open /boot/vmlinuz-4.4.0-96-generic: Permission denied ./spectre-meltdown-checker.sh: 1: ./spectre-meltdown-checker.sh: cannot open /boot/vmlinuz-4.4.0-96-generic: Permission denied ./spectre-meltdown-checker.sh: 1: ./spectre-meltdown-checker.sh: cannot open /boot/vmlinuz-4.4.0-96-generic: Permission denied ./spectre-meltdown-checker.sh: 1: ./spectre-meltdown-checker.sh: cannot open /boot/vmlinuz-4.4.0-96-generic: Permission denied ./spectre-meltdown-checker.sh: 1: ./spectre-meltdown-checker.sh: cannot open /boot/vmlinuz-4.4.0-96-generic: Permission denied CVE-2017-5753 [bounds check bypass] aka 'Spectre Variant 1' * Checking count of LFENCE opcodes in kernel: UNKNOWN > STATUS: UNKNOWN (couldn't check (couldn't extract your kernel from /boot/vmlinuz-4.4.0-96-generic)) CVE-2017-5715 [branch target injection] aka 'Spectre Variant 2' * Mitigation 1 * Hardware (CPU microcode) support for mitigation * The SPEC_CTRL MSR is available: UNKNOWN (couldn't read /dev/cpu/0/msr, is msr support enabled in your kernel?) * The SPEC_CTRL CPUID feature bit is set: UNKNOWN (couldn't read /dev/cpu/0/cpuidr, is cpuid support enabled in your kernel?) * Kernel support for IBRS: NO * IBRS enabled for Kernel space: NO * IBRS enabled for User space: NO * Mitigation 2 * Kernel compiled with retpoline option: NO * Kernel compiled with a retpoline-aware compiler: NO > STATUS: VULNERABLE (IBRS hardware + kernel support OR kernel with retpoline are needed to mitigate the vulnerability) CVE-2017-5754 [rogue data cache load] aka 'Meltdown' aka 'Variant 3' * Kernel supports Page Table Isolation (PTI): NO * PTI enabled and active: NO * Checking if we're running under Xen PV (64 bits): NO > STATUS: VULNERABLE (PTI is needed to mitigate the vulnerability) A false sense of security is worse than no security at all, see --disclaimer
rootã§ã‚„ã£ã¦ã¿ã‚‹ã€‚
ubuntu@psv:~/test$ sudo ./spectre-meltdown-checker.sh [sudo] password for ubuntu: Spectre and Meltdown mitigation detection tool v0.31 Checking for vulnerabilities against running kernel Linux 4.4.0-96-generic #119-Ubuntu SMP Tue Sep 12 14:59:54 UTC 2017 x86_64 CPU is Intel(R) Xeon(R) CPU E5-2640 0 @ 2.50GHz CVE-2017-5753 [bounds check bypass] aka 'Spectre Variant 1' * Checking count of LFENCE opcodes in kernel: NO > STATUS: VULNERABLE (only 33 opcodes found, should be >= 70, heuristic to be improved when official patches become available) CVE-2017-5715 [branch target injection] aka 'Spectre Variant 2' * Mitigation 1 * Hardware (CPU microcode) support for mitigation * The SPEC_CTRL MSR is available: YES * The SPEC_CTRL CPUID feature bit is set: NO * Kernel support for IBRS: NO * IBRS enabled for Kernel space: NO * IBRS enabled for User space: NO * Mitigation 2 * Kernel compiled with retpoline option: NO * Kernel compiled with a retpoline-aware compiler: NO > STATUS: VULNERABLE (IBRS hardware + kernel support OR kernel with retpoline are needed to mitigate the vulnerability) CVE-2017-5754 [rogue data cache load] aka 'Meltdown' aka 'Variant 3' * Kernel supports Page Table Isolation (PTI): NO * PTI enabled and active: NO * Checking if we're running under Xen PV (64 bits): NO > STATUS: VULNERABLE (PTI is needed to mitigate the vulnerability) A false sense of security is worse than no security at all, see --disclaimer
リアルãªè¡¨ç¤ºã¯ã€ã‚¨ã‚¹ã‚±ãƒ¼ãƒ—シーケンã§ã‚«ãƒ©ãƒ•ãƒ«ã«ãªã£ã¦ã„ã‚‹ã‹ã‚‰ã€ã‚‚ã£ã¨ã‚ã‹ã‚Šã‚„ã™ã„よ。
対ç–ã¯ã•ã‚Œã¦ã„ãªã„。
ubuntu@psv:~$ uname -a Linux psv 4.4.0-96-generic #119-Ubuntu SMP Tue Sep 12 14:59:54 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux
ubuntu@psv:~$ sudo apt-get update ubuntu@psv:~$ sudo apt-get upgrade Reading package lists... Done Building dependency tree Reading state information... Done Calculating upgrade... Done The following packages have been kept back: libdrm-amdgpu1 libdrm2 libegl1-mesa libgbm1 libgl1-mesa-dri libwayland-egl1-mesa linux-generic linux-headers-generic linux-image-generic The following packages will be upgraded: libgdk-pixbuf2.0-0 libgdk-pixbuf2.0-common ubuntu-mono 3 upgraded, 0 newly installed, 0 to remove and 9 not upgraded. Need to get 346 kB of archives. After this operation, 0 B of additional disk space will be used. Do you want to continue? [Y/n] y (snip)
xenial-updates/mainã«ã‚‚ã€xenial-security/mainã«ã‚‚ã€å¯¾ç–パッケージã¯æ¥ã¦ã„ãªã„よã†ã 。
AWS
AWSã§ã‚‚ã‚„ã£ã¦ã¿ã‚ˆã†ã‹ãªã€‚
$ sudo ./spectre-meltdown-checker.sh Spectre and Meltdown mitigation detection tool v0.31 Checking for vulnerabilities against running kernel Linux 4.4.0-1039-aws #48-Ubuntu SMP Wed Oct 11 15:15:01 UTC 2017 x86_64 CPU is Intel(R) Xeon(R) CPU E5-2686 v4 @ 2.30GHz CVE-2017-5753 [bounds check bypass] aka 'Spectre Variant 1' * Checking count of LFENCE opcodes in kernel: NO > STATUS: VULNERABLE (only 33 opcodes found, should be >= 70, heuristic to be improved when official patches become available) CVE-2017-5715 [branch target injection] aka 'Spectre Variant 2' * Mitigation 1 * Hardware (CPU microcode) support for mitigation * The SPEC_CTRL MSR is available: YES * The SPEC_CTRL CPUID feature bit is set: NO * Kernel support for IBRS: NO * IBRS enabled for Kernel space: NO * IBRS enabled for User space: NO * Mitigation 2 * Kernel compiled with retpoline option: NO * Kernel compiled with a retpoline-aware compiler: NO > STATUS: VULNERABLE (IBRS hardware + kernel support OR kernel with retpoline are needed to mitigate the vulnerability) CVE-2017-5754 [rogue data cache load] aka 'Meltdown' aka 'Variant 3' * Kernel supports Page Table Isolation (PTI): NO * PTI enabled and active: NO * Checking if we're running under Xen PV (64 bits): NO > STATUS: VULNERABLE (PTI is needed to mitigate the vulnerability) A false sense of security is worse than no security at all, see --disclaimer
EC2ã®ä¸èº«ã¾ã§ã¯è²¬ä»»ã®ç¯„囲外ã§ã€è‡ªåˆ†ã§ã‚„ã‚Œã£ã¦ã“ã¨ã。
パッケージアップデートã—ã¦å†èµ·å‹•ã€‚
$ sudo apt-get update $ sudo apt-get upgrade Reading package lists... Done Building dependency tree Reading state information... Done Calculating upgrade... Done The following packages were automatically installed and are no longer required: linux-aws-headers-4.4.0-1028 linux-aws-headers-4.4.0-1035 linux-aws-headers-4.4.0-1038 linux-aws-headers-4.4.0-1041 linux-aws-headers-4.4.0-1043 linux-aws-headers-4.4.0-1044 linux-headers-4.4.0-1028-aws linux-headers-4.4.0-1035-aws linux-headers-4.4.0-1038-aws linux-headers-4.4.0-1041-aws linux-headers-4.4.0-1043-aws linux-headers-4.4.0-1044-aws linux-image-4.4.0-1028-aws linux-image-4.4.0-1035-aws linux-image-4.4.0-1038-aws linux-image-4.4.0-1041-aws linux-image-4.4.0-1043-aws linux-image-4.4.0-1044-aws Use 'sudo apt autoremove' to remove them. The following packages have been kept back: libdrm2 The following packages will be upgraded: grub-common grub-pc grub-pc-bin grub2-common libseccomp2 squashfs-tools unattended-upgrades 7 upgraded, 0 newly installed, 0 to remove and 1 not upgraded. Need to get 3,477 kB of archives. After this operation, 28.7 kB of additional disk space will be used. Do you want to continue? [Y/n] y (snip) $ sudo reboot
AWSã®ã¯ç‹¬è‡ªãƒ‘ッケージã®ã‚ˆã†ã 。
ãã‚“ãªã«æ–°ã—ããªã„ãªã€‚
$ uname -a Linux ip-xxx-xxx-xxx-xxx 4.4.0-1048-aws #57-Ubuntu SMP Tue Jan 9 21:45:57 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux
実行ã™ã‚‹ã€‚
$ sudo ./spectre-meltdown-checker.sh Spectre and Meltdown mitigation detection tool v0.31 Checking for vulnerabilities against running kernel Linux 4.4.0-1048-aws #57-Ubuntu SMP Tue Jan 9 21:45:57 UTC 2018 x86_64 CPU is Intel(R) Xeon(R) CPU E5-2686 v4 @ 2.30GHz CVE-2017-5753 [bounds check bypass] aka 'Spectre Variant 1' * Checking count of LFENCE opcodes in kernel: NO > STATUS: VULNERABLE (only 35 opcodes found, should be >= 70, heuristic to be improved when official patches become available) CVE-2017-5715 [branch target injection] aka 'Spectre Variant 2' * Mitigation 1 * Hardware (CPU microcode) support for mitigation * The SPEC_CTRL MSR is available: YES * The SPEC_CTRL CPUID feature bit is set: NO * Kernel support for IBRS: NO * IBRS enabled for Kernel space: NO * IBRS enabled for User space: NO * Mitigation 2 * Kernel compiled with retpoline option: NO * Kernel compiled with a retpoline-aware compiler: NO > STATUS: VULNERABLE (IBRS hardware + kernel support OR kernel with retpoline are needed to mitigate the vulnerability) CVE-2017-5754 [rogue data cache load] aka 'Meltdown' aka 'Variant 3' * Kernel supports Page Table Isolation (PTI): YES * PTI enabled and active: YES * Checking if we're running under Xen PV (64 bits): NO > STATUS: NOT VULNERABLE (PTI mitigates the vulnerability) A false sense of security is worse than no security at all, see --disclaimer
スペクターã¯æœªå¯¾ç–。
メルトダウンã®å¯¾ç–ãŒã•ã‚ŒãŸã®ã¯ã‚ã‹ã£ãŸã€‚
