Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 3 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved.
|
|
- せぴあ わかはら
- 7 years ago
- Views:
Transcription
1 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 2
2 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 3 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 4
3 ( ) p.11 p.12 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 5 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 6
4 - Erroneous Error Handling - Information Leakage web - Session Hijacking/Replay - OS Command Injection - Session Fixation - SQL Injection - Brute Force Password check - Buffer Overflow - Forceful Browsing - Parameter manipulation - Back door and Debug mode web - phishing pharming - - Erroneous Error Handling - Information Leakage - Cross Site Scripting XSS - - Cross Site Request Forgery CSRF - F/W Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 7 Buffer Overflow Cross-Site Scripting Parameter Manipulation Backdoor & Debug Options SQL Injection OS Command Injection Client Side Comment Error Codes Forceful Browsing Unnecessary Information HTTPS Misuse Cross-Site Request Forgeries Unnecessary File Server misconfiguration Insecure Cookies Session Hijack Session Replay Session Fixation Known Vulnerability Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 8
5 Buffer Overflow GET/default.ida?NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN NNNNNNNNNNNNNNNNNNN%u9090%u6858%ucbd3%u7801%u9090%u 6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u9090%u8190 %u00c3%u0003%u8b00%u531b%u53ff%u0078%u0000%u00=a HTTP/1.0 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 9 Cross-Site Scripting Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 10
6 Cross-Site Scripting Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 11 Parameter Manipulation Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 12
7 Backdoor & Debug Options Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 13 SQL Injection Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 14
8 SQL Injection select id from user_table where id= ${id} and pw= ${pw} or 1=1 -- abc select id from user_table where id= or 1=1 -- and pw= abc where SQL Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 15 SQL Injection xxx' and 1=1-- xxx' and 1=0-- and absinthe Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 16
9 OS Command Injection Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 17 Client Side Comment Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 18
10 Error Codes Unnecessary Information Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 19 Forceful Browsing Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 20
11 Unnecessary Information Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 21 HTTPS Misuse Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 22
12 Cross-Site Request Forgeries hidden hidden Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 23 Cross-Site Request Forgeries Cookie Cookie Cookie <a href= </a> Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 24
13 Unnecessary File /var/www/htdocs/ Image/ css/ script/ data/ toiawase.dat exec.cgi Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 25 Unnecessary File Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 26
14 Server misconfiguration Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 27 Insecure Cookies Set-Cookie: ssid= Cookie: ssid= Set-Cookie: ssid=hkhd3ksa31gak9f; secure Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 28
15 Session Hijack Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 29 Session Replay Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 30
16 Session Fixation Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 31 Session Fixation <a href=" PHPSESSID=abcdefg"> </a> Cookie Set-Cookie: PHPSESSID=abcdefg Cookie: PHPSESSID=abcdefg Cookie: PHPSESSID=abcdefg Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 32
17 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 33 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 34
18 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 35 Authentication Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 36
19 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved MbpsLAN PC , Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 38
20 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 39 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 40
21 id=naka, pw=ieog39sj pw hash( ieog39sj ) Pc0gGUJNM4fr4 MHn+9JhQQ naka, Pc0gGUJNM4fr4MHn+9JhQQ ID Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 41 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 42
22 1 Keep-Alive Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 43 GET / HTTP/1.1 Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwaveflash, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */* Accept-Language: ja Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; InfoPath.1;.NET CLR ) Host: Connection: Keep-Alive HTTP/ OK Date: Wed, 29 Nov :21:21 GMT Server: Apache Content-Length: Connection: close Content-Type: text/html; charset=shift_jis <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 44
23 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 45 GET /auth/index.html HTTP/1.1 Accept: */* Accept-Language: ja Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; InfoPath.1;.NET CLR ) Host: Connection: Keep-Alive Authorization: Basic Z3Vlc3Q6Zm9vYmFy Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 46
24 $ perl -MMIME::Base64 -e 'print MIME::Base64::decode_base64("Z3Vlc3Q6Zm9vYmFy");' guest::foobar Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 47 GET /auth2/index.html HTTP/1.1 Accept: */* Accept-Language: ja Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; InfoPath.1;.NET CLR ) Host: Connection: Keep-Alive Pragma: no-cache Authorization: Digest username="guest", realm="sec", qop="auth", algorithm="md5", uri="/auth2/index.html",nonce="yfgkvbijbaa=2a8b5d8f5e1d4f4f342a457d8b604640f5 1347d5", nc= , cnonce="bfae40a7d3fdeb264eb078563de43943",response= "44985ca43eb4c7001c9948efcfa23a1f" Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 48
25 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 49 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 50
26 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 51 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 52
27 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 53 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 54
28 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 55 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 56
29 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 57 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 58
30 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 59 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 60
31 <input type= hidden name= sec_key value= ALG2K9Q0E > Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 61 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 62
32 $str =~ / d+/; $str =~ /^ d+$/; Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 63 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 64
33 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 65 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 66
34 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 67 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 68
35 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 69 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 70
36 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 71 xss_ Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 72
37 "><script>alert()</script> Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 73 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 74
38 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 75 Copyright 2006 Mitsui Bussan Secure Directions, Inc. All Rights Reserved. 76
第2回_416.ppt
3 2 2010 4 IPA Web http://www.ipa.go.jp/security/awareness/vendor/programming Copyright 2010 IPA 1 2-1 2-1-1 (CSRF) 2-1-2 ID 2-1-3 ID 2-1-4 https: 2-1-5 ID 2-1-6 2-1-7 2-2 2-2-1 2-2-2 2-3 2 2-3-1 Web Copyright
More information5-5_arai_JPNICSecSemi_XssCsrf_CM_ PDF
XSS + CSRF JPNIC JPCERT/CC 2005 Web 2005 10 6 IS Copyright 2005 SECOM Co., Ltd. All rights reserved. 1 XSS + CSRF Web Web Web (Web, DB, ) Copyright 2005 SECOM Co., Ltd. All rights reserved. 2 SQL XSS Copyright
More informationshio_20041004.PDF
JPNIC JPCERT/CC 2004 Web 2004 10 4 Web Web Web WASC Web Application Security Consortium 7 Web Security Threat Classification Web URL 2 ...?? It depends!? It depends!??? 3 ? It depends!...
More information¥Í¥Ã¥È¥ï¡¼¥¯¥×¥í¥°¥é¥ß¥ó¥°ÆÃÏÀ
6 : JavaScript 2 : Web Web HTTPS : Web : Web, Internet Week 1 / 23 2 / 23 Web Web : HTTP: ( ) TCP: IP: ( ) Web 3 / 23 Basic (base64 ) ( ) Digest md5 Basic (nonce) hidden
More informationHTTP Web Web RFC2616 HTTP/1.1 Web Apache Tomcat (Servlet ) XML Xindice Tomcat 6-2
HTTP 6-1 HTTP Web Web RFC2616 HTTP/1.1 Web Apache Tomcat (Servlet ) XML Xindice Tomcat 6-2 HTTP ( ) ( ) (GET, POST ) (Host ) Tomcat Servlet Examples / Request Headers ( ) (200, 404 ) (Content-Type ) 6-3
More informationWeb のクライアントサーバモデル
第 2 回の内容 クライアントサーバモデル URI HTTP Web のクライアントサーバモデル クライアントサーバモデル ユーザークライアントサーバ 処理要求の入力 処理要求 結果の提示 処理結果 処理 Web のクライアントサーバモデル ユーザー Web ブラウザ Web サーバ URI の指示 HTTP リクエスト Web ページの描画 HTTP レスポンス URI Web ブラウザのアドレスバー
More information- 2 Copyright (C) 2006. All Rights Reserved.
- 2 Copyright (C) 2006. All Rights Reserved. 2-3 Copyright (C) 2006. All Rights Reserved. 70-4 Copyright (C) 2006. All Rights Reserved. ...1...3...7...8 1...9...14...16 2...18...20...21 3...22...23...23...24
More information第3回_416.ppt
3 3 2010 4 IPA Web http://www.ipa.go.jp/security/awareness/vendor/programming Copyright 2010 IPA 1 3-1 3-1-1 SQL #1 3-1-2 SQL #2 3-1-3 3-1-4 3-2 3-2-1 #2 3-2-2 #1 3-2-3 HTTP 3-3 3-3-1 3-3-2 Copyright 2010
More informationMicrosoft PowerPoint - webapp.ppt [互換モード]
一 般 的 なWebアクセス Webサーバ バ レスポンス HTML ファイル HTTPリクエスト 画 像 ファイル Webブラウザ あらかじめ 用 意 されたリソースしか 提 供 できない Webアプリケーション Webサーバ バ レスポンス HTTPリクエスト HTML Webブラウザ ページを 動 的 に 生 成 プログラム 実 行 データベース 操 作 Webアプリケーション 掲 示 板 検
More informationict7.key
WebHTTP World Wide Web DNS port: 80 / 443 WWW URL/URI(Uniform Resource Locator/Identifier) HTTP(Hyper Text Transfer Protocol) Web HTML(Hyper Text Markup Language). URL(Uniform Resource Locator) URL = :
More informationCopyright 2008 All Rights Reserved 2
Copyright 2008 All Rights Reserved 1 Copyright 2008 All Rights Reserved 2 Copyright 2008 All Rights Reserved 3 Copyright 2008 All Rights Reserved 4 Copyright 2008 All Rights Reserved 5 Copyright 2008 All
More informationハピタス のコピー.pages
Copyright (C) All Rights Reserved. 10 12,500 () ( ) ()() 1 : 2 : 3 : 2 4 : 5 : Copyright (C) All Rights Reserved. Copyright (C) All Rights Reserved. Copyright (C) All Rights Reserved. Copyright (C) All
More information最新 Web トレンドレポート (06.04) ~ Exploit-DB(http://exploit-db.com) より公開されている内容に基づいたトレンド情報です サマリー ペンタセキュリティシステムズ株式会社 R&D センターデータセキュリティチーム 06 年 4
06.04 最新 Web トレンドレポート (06.04) 06.04.0~06.04.0 Exploit-DB(http://exploit-db.com) より公開されている内容に基づいたトレンド情報です サマリー ペンタセキュリティシステムズ株式会社 R&D センターデータセキュリティチーム 06 年 4 月公開された Exploit-DB の分析結果 クロスサイトスクリプティング (Cross
More information¥Í¥Ã¥È¥ï¡¼¥¯¥×¥í¥°¥é¥ß¥ó¥°ÆÃÏÀ
2 : TCP/IP : HTTP HTTP/2 1 / 22 httpget.txt: http.rb: ruby http get Java http ( ) HttpURLConnection 2 / 22 wireshark httpget.txt httpget cookie.txt ( ) telnet telnet localhost 80 GET /index.html HTTP/1.1
More informationuntitled
2 1 Web 3 4 2 5 6 3 7 Internet = Inter Network 8 4 B B A B C A B C D D 9 A G D G F A B C D F D C D E F E F G H 10 5 11 Internet = Inter Network PC 12 6 1986 NSFNET 1995 1991 World Wide Web 1995 Windows95
More informationHTTPの 規 格
第 5 回 の 内 容 HTTPの 規 格 HTTPメッセージの 基 本 HTTPの 規 格 HTTPの 規 格 Internet Engineering Task Force (IETF) Request for Comments (RFC) 年 バージョン RFC 1996 年 HTTP/1.0 RFC 1945 Hypertext Transfer Protocol -- HTTP/1.0 1997
More informationSession Fixation ID ID ID ID WhiteHat Security 1) 12% Session Fixation MBSD 2) Session Fixation Session Fixation ID ID ID ID ID Session Fixation ID ID
Session ID Session Fixation 1 1 1, 2 Session Fixation Session Fixation ID Session Fixation ID ID ID ID Session Fixation Session Fixation Detection of Session Fixation Vulnerabilities with Session ID Monitoring
More information初心者にもできるアメブロカスタマイズ新2016.pages
Copyright All Rights Reserved. 41 Copyright All Rights Reserved. 60 68 70 6 78 80 Copyright All Rights Reserved. FC2 97 Copyright All Rights Reserved. Copyright All Rights Reserved. Copyright All Rights
More informationSystemwalker IT Service Management Systemwalker IT Service Management V11.0L10 IT Service Management - Centric Manager Windows
Systemwalker IT Service Management Systemwalker IT Service Management V11.0L10 IT Service Management - Centric Manager Windows Systemwalker IT Service Management Systemwalker Centric Manager IT Service
More informationCopyright All Rights Reserved. -2 -!
http://ameblo.jp/admarketing/ Copyright All Rights Reserved. -2 -! Copyright All Rights Reserved. -3- Copyright All Rights Reserved. -4- Copyright All Rights Reserved. -5 - Copyright All Rights Reserved.
More informationIPA:セキュアなインターネットサーバー構築に関する調査
Copyright 2003 IPA, All Rights Reserved. Copyright 2003 IPA, All Rights Reserved. Copyright 2003 IPA, All Rights Reserved. Copyright 2003 IPA, All Rights Reserved. Copyright 2003 IPA, All Rights Reserved.
More informationサマリー EDB-Report ペンタセキュリティシステムズ株式会社 R&D センターデータセキュリティチーム 06 年 8 月に公開された Exploit-DB の分析結果 Cross Site Scripting の攻撃に対する脆弱性報告件数が最も多かったです 発見された Cross Site
06.08 サマリー EDB-Report ペンタセキュリティシステムズ株式会社 R&D センターデータセキュリティチーム 06 年 8 月に公開された Exploit-DB の分析結果 Cross Site Scripting の攻撃に対する脆弱性報告件数が最も多かったです 発見された Cross Site Scripting らの攻撃は単にスクリプトを使用したり イメージタグを使用するなどの攻撃難易度や危険度の側面ではレベルの高い攻撃パターンではありませんでした
More informationCopyright 2010 Sumitomo Mitsui Banking Corporation. All Rights Reserved.
1 2 3 4 5 3 1 2 5 4 2Copyright 2010 Sumitomo Mitsui Banking Corporation. All Rights Reserved. Copyright 2010 Sumitomo Mitsui Banking Corporation. All Rights Reserved.3 Contents 4Copyright 2010 Sumitomo
More informationMicrosoft Word - 最終版 バックせどりismマニュアル .docx
ism ISM ISM ISM ISM ISM ISM Copyright (c) 2010 All Rights Reserved. Copyright (c) 2010 All Rights Reserved. Copyright (c) 2010 All Rights Reserved. ISM Copyright (c) 2010 All Rights Reserved. Copyright
More informationCopyright 2006 KDDI Corporation. All Rights Reserved page1
Copyright 2006 KDDI Corporation. All Rights Reserved page1 Copyright 2006 KDDI Corporation. All Rights Reserved page2 Copyright 2006 KDDI Corporation. All Rights Reserved page3 Copyright 2006 KDDI Corporation.
More informationスマートアヴェニュー ご利用マニュアル
FTP HTML GIF/JPEG RealAudio Shockwave FLASH index.htm index.html HTML http:// / http:// / / smartave.ne.jp http://smartave.ne.jp/ abc http://smartave.ne.jp/abc/ ~ HTML URL /home /home/[userdir] [userdir]
More informationEDB-Report 最新 Web トレンドレポート (05.) 05..0~05.. Exploit-DB( より公開されている内容に基づいたトレンド情報です ペンタセキュリティシステムズ株式会社 R&D センターデータセキュリティチーム サマリー 05
05. EDB-Report 最新 Web トレンドレポート (05.) 05..0~05.. Exploit-DB(http://exploit-db.com) より公開されている内容に基づいたトレンド情報です ペンタセキュリティシステムズ株式会社 R&D センターデータセキュリティチーム サマリー 05 年 月に公開されたExploit-DBの分析結果 Local File Inclusion
More information25 About what prevent spoofing of misusing a session information
25 About what prevent spoofing of misusing a session information 1140349 2014 2 28 Web Web [1]. [2] SAS-2(Simple And Secure password authentication protocol, ver.2)[3] SAS-2 i Abstract About what prevent
More informationuntitled
Windows Internet Information Server SQL Server 2 Explorer 3 MMC MMC mmc /a SQL Enterprise Manager IIS 4 MMC 5 MMC 6 Internet Information Server IIS %SystemRoot% system32 Logfiles IIS Web 8 IIS 9 ODBC Windows
More informationuntitled
mitsuya Copyright (C) 2007. All Rights Reserved. 1/1 mitsuya Copyright (C) 2007. All Rights Reserved. 2/2 mitsuya Copyright (C) 2007. All Rights Reserved. 3/3 mitsuya Copyright (C) 2007. All Rights Reserved.
More informationCopyright Qetic Inc. All Rights Reserved. 2
Copyright Qetic Inc. All Rights Reserved. 2 Copyright Qetic Inc. All Rights Reserved. 4 35% Copyright Qetic Inc. All Rights Reserved. 9 Copyright Qetic Inc. All Rights Reserved. 11 Copyright Qetic
More information96 8 PHPlot 1. ( 8.1) 4 1: // 2: // $_SERVER[ HTTP_REFERER ]... 3: // $_SERVER[ HTTP_USER_AGENT ]... 4: // $_SERVER[ REMOTE_ADDR ]... ( ) 5: // $_SERV
95 8 PHPlot PHP PHPlot 8.1 Web PHP Web $_SERVER[ key ] Apache P.119, P.120 4 key ( ) HTTP REFERER referer (varchar(512)) USER AGENT user agent (varchar(512)) REMOTE ADDR remote address (varchar(512)) REQUEST
More informationPhishing対策のためのMutualアクセス認証 〜 MutualTestFoxの公開について 〜
Mozilla Party 9.0 2008 5 31 MutualTestFox Phishing Mutual Phishing MutualPhishing WebMutual BasicDigest HTML Form 2 3 4 5 4 22 MutualTestFox 3.0!5+draft02.0 (r718) mod_auth_mutual (r718) 5 8 (r736) J(pi)
More information- 2 Copyright (C) 2009. All Rights Reserved.
- 2 Copyright (C) 2009. All Rights Reserved. - 3 Copyright (C) 2009. All Rights Reserved. - 4 Copyright (C) 2009. All Rights Reserved. - 5 Copyright (C) 2009. All Rights Reserved. - 6 Copyright (C) 2009.
More informationKDDI
Copyright 2007 KDDI Corporation. All Rights Reserved page.1 Copyright 2007 KDDI Corporation. All Rights Reserved page.2 Copyright 2007 KDDI Corporation. All Rights Reserved page.3 Copyright 2007 KDDI Corporation.
More informationGulfStar1.5ユーザーマニュアル
GulfStar ID 2004 6 1 1 ID...2 2 ID...2 3...3...3...6...6 4...7 URL...7...8 5...10...10... 11 6...12...12 1/12 ID BASIC GulfStar 1 ID ID 2 ID ID 2/12 3 [ ][ ][ ] ID URL 3/12 2 ID 4/12 URL POST URL(
More informationWeb用-全頁
イラストレーター速習編 (1 回目 )(2 回目 ) デザイン 基本的な操作方法を 簡単なロゴの素材などを作成しながら学習します 1.Illustratorの基本操作 画面構成 Illustratorの基本知識 2. 描画 基本図形 鉛筆ツール ブラシツール ペンツール レイヤーの基本知識 Windowsの基本的な知識と使用経験があること 使用ソフト Illustrator CS6 受講料 4,000
More information最新 Web 脆弱性トレンドレポート (05.09) ~ Exploit-DB( より公開されている内容に基づいた脆弱性トレンド情報です サマリー ペンタセキュリティシステムズ株式会社 R&D センターデータセキュリティチーム
05.09 最新 Web 脆弱性トレンドレポート (05.09) 05.09.0~05.09.0 Exploit-DB(http://exploit-db.com) より公開されている内容に基づいた脆弱性トレンド情報です サマリー ペンタセキュリティシステムズ株式会社 R&D センターデータセキュリティチーム 05 年 9 月は Exploit-DB の分析結果をみると クロスサイトスクリプティング
More informationhow-to-decide-a-title
Contents 3 4 5 6 8 13 13 14 14 15 15 18 19 Copyright 2014 All Rights Reserved. 2 / 21 URL AdobeReader ( ) http://www.adobe.co.jp/products/acrobat/readstep2.html Copyright 2014 All Rights Reserved. 3 /
More information実施していただく前に
SiteProtector 2.0 Service Pack 5 Service Pack 6 2006 4 7 1.... 2 Event Collector Service Pack 1.13... 3 2. SiteProtector Core SP6... 4 3. Console... 10 4. Service Pack 6... 11 5. 1 Deployment Manager...
More information最新 Web 脆弱性トレンドレポート (08.0) ~08.0. Exploit-DB( より公開されている内容に基づいた脆弱性トレンド情報です ペンタセキュリティシステムズ株式会社 R&D センターデータセキュリティチーム サマリー 08 年
08.0 最新 Web 脆弱性トレンドレポート (08.0) 08.0.0~08.0. Exploit-DB(http://exploit-db.com) より公開されている内容に基づいた脆弱性トレンド情報です ペンタセキュリティシステムズ株式会社 R&D センターデータセキュリティチーム サマリー 08 年 月に公開された Exploit DB の脆弱性報告件数は 6 件でした こので最も多くの脆弱性が公開された攻撃は
More information健康保険組合のあゆみ_top
(1912) (1951) 2,00024,000 (1954) (1958) (1962) (1965) (1968) (1969) (1971) (1972) (1973) (1974) (1976) (1978) (1980) (1982) (1983) (1984) (1985) (1987) (1988) (1989) (1990) (1991) (1992) (1994) (1995)
More informationWeb XXX.XXX.XXX.XXX - - [02/May/2010:12:52: ] "GET /url/url2/page2.htm HTTP/1.1" "http://www.domain.co.jp/url/url2/page1.htm" "(compatibl
Web Web-Site Analytics Fukuoka Financial Group, Inc. Mahiru Sunaga SAS Institute Japan Ltd. Kiyoshi Murakami (Combind log format) Apache Web 2 1 Web XXX.XXX.XXX.XXX - - [02/May/2010:12:52:55 +0900] "GET
More informationコンテントネゴシエーション
第 6 回 の 内 容 コンテントネゴシエーション キャッシュ 制 御 HTTP 認 証 アクセス 解 析 コンテントネゴシエーション リソースの 表 現 バリアント HTML 文 書 日 本 語 PDF 英 語 PNG 画 像 日 本 語 プレーンテキスト 英 語 リソース コンテントネゴシエーション HTTPリクエストメッセージのヘッダで 希 望 する 表 現 をサーバに 通 知 複 数 の 候
More information…l…b…g…‘†[…N…v…“…O…›…~…fi…OfiÁŸ_
12 : REST : Apache Tomcat Node.js 1 / 29 basic auth/:.htaccess.htpasswd.htaccess Web ( MIME ) testcgi.c: CGI rest.rb: yahoo CGI (written in ruby) tomcat/ testform.html: form.jsp form.jsp: PUT JSP form
More informationSi-R180 ご利用にあたって
P3NK-2472-01Z0 GeoStream Si-R 180 LAN 2007 7 Microsoft Corporation All rights reserved, Copyright 2007 2 ...2...5...5...5...5...6...7...8...8...11...11 LAN...11...11...12...12...12...12...12...13 ISO/IEC15408...14
More informationGA-1190J
GA-1190J 1 1. 2. 3. 4. 2 5. 3 PDF 4 PDF PDF PDF PDF PDF PDF PDF PDF 5 6 ...1...2...4 1...12 2...16...18 3...22 PCL/PS...23 4...26 5...30 ETHERNET...31 TCP/IP...33 IPX/SPX...38 AppleTalk...40 HTTP...42
More informationmain.dvi
Central Authentication and Authorization Service Web Application (Hisashi NAITO) Graduate School of Mathematics, Nagoya University naito@math.nagoya-u.ac.jp (Shoji KAJITA) Information Technology Center,
More informationCAC
VOL.24NO.1 61 IMS Transaction 3270 DataBase Transaction OS/370 IMS Traditional Transaction Web Browser Transaction Internet WWW AP IIS APache WebLogic Websphere DataBase Oracle DB2 SQL Server Web Browser
More information1 4 1.1..................................... 4 1.2..................................... 5 1.3..................................... 5 2 HTTP 7 2.1 HTTP
2015 HTTP Web 2016 2 1 5114F036-1 1 4 1.1..................................... 4 1.2..................................... 5 1.3..................................... 5 2 HTTP 7 2.1 HTTP....................................
More informationMultiPASS Suite 3.20 使用説明書
TM MultiPASS Suite Ver.3.20 for Windows ii iii Copyright 2000 Canon Inc. ALL RIGHTS RESERVED iv v vi vii viii ix x 1 1 1-1 1 1 2 3 1-2 4 5 1 1-3 1 6 1-4 7 1 8 9 1-5 10 1 11 1-6 1 1-7 1 1-8 2 1 1-9 1 1
More informationuntitled
FutureNet Microsoft Corporation Microsoft Windows Windows 95 Windows 98 Windows NT4.0 Windows 2000, Windows XP, Microsoft Internet Exproler (1) (2) (3) COM. (4) (5) ii ... 1 1.1... 1 1.2... 3 1.3... 6...
More information[ ][ ] HTML [ ] HTML HTML
COPYRIGHT 2009 MAGREX, ALL RIGHTS RESERVED. [ ][ ] HTML [ ] HTML HTML [ ][ ] / / / [ ][ ] HTML HTML URL URL [ ][ ] Cellpadding Cellspacing ID ID URL [ ][ ] ID ID URL [ ][ ] ID ID URL [ ][ ] [ ][ ] [ ]
More informationuntitled
200 7 19 JPCERT [2007 2 4 6 ] IPA JPCERT JPCERT/CC 2007 2 4 6 1 2 1. 2007 2 1 2007 4 1 6 30 IPA 46 95 141 2004 7 8 501 940 1,441 3 2 (1) 3 2004 7 8 1 2007 2 1.98 1 2005/1Q 2005/2Q 2005/3Q 2005/4Q 2006/1Q
More informationサマリー EDB-Report 最新 Web 脆弱性トレンドレポート (05.07) ~ Exploit-DB( より公開されている内容に基づいた脆弱性トレンド情報です ペンタセキュリティシステムズ株式会社 R&D センターデー
05.07 サマリー EDB-Report 最新 Web 脆弱性トレンドレポート (05.07) 05.07.0~05.07.3 Exploit-DB(http://exploit-db.com) より公開されている内容に基づいた脆弱性トレンド情報です ペンタセキュリティシステムズ株式会社 R&D センターデータセキュリティチーム 05 年 7 月に公開された Exploit-DB を分析した結果
More informationCAS Yale Open Source software Authentication Authorization (nu-cas) Backend Database Authentication Authorization to@math.nagoya-u.ac.jp, Powered by A
Central Authentication System naito@math.nagoya-u.ac.jp to@math.nagoya-u.ac.jp, Powered by Adobe Reader & ipod Photo March 10, 2005 RIMS p. 1/55 CAS Yale Open Source software Authentication Authorization
More informationWIDE 1
WIDE 1 2 Web Web Web Web Web Web Web Web Web Web? Web Web Things to cover Web Web Web Web Caching Proxy 3 Things NOT covered / How to execute Perl Scripts as CGI binaries on Windows NT How to avoid access
More information①
Copyright 2005 Impex.,inc. All Rights Reserved 1 Copyright 2005 Impex.,inc. All Rights Reserved 2 Copyright 2005 Impex.,inc. All Rights Reserved 3 Copyright 2005 Impex.,inc. All Rights Reserved 4 Copyright
More information2. 1. 1. 2. 2. 3. 3. 3. 1. 1. 2. 3. 2
DTR-30.6 Ja 2. 1. 1. 2. 2. 3. 3. 3. 1. 1. 2. 3. 2 4. 1. 3. 4. 1. 1. 2. 2. 3 1. 2. 3. 1. 4 2. 3. 1. 2. 3. 4. 5. 5 1. 1. 2. 3. 2. 4. 3. 4. 5. 6. 7. 2. 3. 1. 6 PC NAS 1. 2. 3. 4. 5. 1. 2. 3. 4. 5. 1. 2. 3.
More information意外と簡単!?
!?Access Oracle Oracle Migration Workbench MS-Access Oracle Creation Date: Oct 01, 2004 Last Update: Mar 08, 2005 Version: 1.1 !? Oracle Database 10g / GUI!? / Standard Edition!? /!?!? Oracle Database
More informationFileMaker 15 WebDirect ガイド
FileMaker 15 WebDirect 2013 2016 FileMaker, Inc. All Rights Reserved. FileMaker, Inc. 5201 Patrick Henry Drive Santa Clara, California 95054 FileMaker FileMaker Go FileMaker, Inc. FileMaker WebDirect FileMaker,
More informationMultiPASS B-20 MultiPASS Suite 3.10使用説明書
TM MultiPASS Suite Ver.3.10 for Windows ii iii Copyright 1999 Canon Inc. ALL RIGHTS RESERVED iv v vi vii viii ix x 1 2 3 4 5 6 7 8 9 xi xii 1 1 1-1 1 2 3 1-2 4 5 1 1-3 6 1-4 1 7 8 1-5 9 10 11 1-6 1 1-7
More informationiPhone/iPad/Android(TM) とベリサイン アイデンティティプロテクション(VIP)エンタープライズゲートウェイとの組み合わせによるL2TP+IPsecのワンタイムパスワード設定例
VeriSign VIP VIP + AR VIP VIP AR VPN iphone ipad Apple Inc. iphone Android Google Inc. Copyright 2011 Allied Telesis K.K. All Rights Reserved. VIP AR User Copyright 2011 Allied Telesis K.K. All Rights
More informationCopyright 2008 NIFTY Corporation All rights reserved. 2
Copyright 2008 NIFTY Corporation All rights reserved. 2 Copyright 2008 NIFTY Corporation All rights reserved. 3 Copyright 2008 NIFTY Corporation All rights reserved. 4 Copyright 2008 NIFTY Corporation
More informationuntitled
20070930A GO-Global for Windows Ver 3.2 Copyright (c) 2000-2007 kitasp. All Rights Reserved Slide 2 Slide 3 Slide 4 Slide 5 Slide 6 Slide 7 Slide 8 GO-Global Slide 9 GO-Global Server Slide 10 Slide 11
More informationuntitled
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 3_2. 24 25 26 27 28 29 30 31 32 33 CSV 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67
More informationCisco® ASA シリーズルーター向けDigiCert® 統合ガイド
Cisco ASA DigiCert 2013 7 8 Cisco ASA VPN DigiCert : 2013 7 8 Copyright 2018 DigiCert, Inc. All rights reserved. DigiCert DigiCert DigiCert, Inc. Symantec Norton Symantec Corporation DigiCert, Inc. DigiCert,
More informationWordPress Ktai Style Ktai Entry 18 Mac 18
WORDPRESS 2011 8 27 (8 31 ) WordBeach Nagoya WordBench WordPress Ktai Style Ktai Entry 18 Mac 18 http://www.yuriko.net/ @lilyfanjp PHP WordPress ( ) WordPress function the_content($more_link_text=null,$stripteaser=0,
More informationWindows Oracle -Web - Copyright Oracle Corporation Japan, All rights reserved.
Windows Oracle -Web - Copyright Oracle Corporation Japan, 2004. All rights reserved. Agenda Oracle Windows Windows Oracle 1 / Active Directory/Enterprise User Security 1-1 Windows 1-2 Kerberos 1-3 Enterprise
More informationP2P? ( )? ( SOX ) ( ) COPYRIGHT 2005 SSH COMMUNICATIONS SECURITY CORP. ALL RIGHTS RESERVED. 2
SSH Security Solution 2006 COPYRIGHT 2005 SSH COMMUNICATIONS SECURITY CORP. ALL RIGHTS RESERVED. 1 P2P? ( )? ( SOX ) ( ) COPYRIGHT 2005 SSH COMMUNICATIONS SECURITY CORP. ALL RIGHTS RESERVED. 2 SSH Tectia
More information橡t15-shibuya.kashiwa.ppt
PHPLib PHPLib 1 Web Application PHPLib DB_S PostgreSQL, MySQL, Oracle, ODBC Session GET Auth Perm User 2 PHPLib local.inc Require($_PHPLIB[ libdir ]. db_mysql.inc ); db_pgsql.inc prepend.php3 Php3.ini
More informationXMLアクセス機能説明書
SolarisTM Solaris Microsoft Windows NT Server network operating system Version 4.0 Windows NT Microsoft Windows 2000 Server operating systemmicrosoft Windows 2000 Advanced Server operating system Windows
More information30 40 40 50 48 4 54 2 10 2
Easy File 1989 FM-TOWNS 20 30 1 30 40 40 50 48 4 54 2 10 2 OS Windows95 3 ( ) ( ) ( ) 4 A. B. C. D. E. A B ( ) C PR D E 5 / A B C D PC A 6 1 7 2 8 1. 2. 3. 4. 5. 6. 7. 9 PocketPC, plam, PC GIF 10 2.2 GIF
More information1 1. Page 1 intra -mart EE Page 2 Copyright 2004 NTT All rights Reserved. 2 Page 3 intra -mart EE Page 4 Copyright 2004 NTT All rights Reserved. 0Web EE Page 5 intra -mart Page 6 Copyright 2004 NTT All
More information目次〜.indd
目次 1 はじめに 3 1. 1 本書の目的 3 1. 2 セキュリティ ホールの一生 5 1. 2. 1 フルディスクロージャという思想 6 1. 3 セキュリティの階層 8 2 HTTP 通信の基礎 21 2. 1 Web アプリケーションとネットワーク 21 2. 2 階層化されている通信プロトコル 22 2. 3 HTTP 26 2. 4 パケットキャプチャによって 実際に確認する 27 2.
More informationNetSkate
NetSkateVisualizer v2.1 Cyber Solutions Inc. 1. 2. 3. 4. 5. 6. 7. Cyber Solutions Inc. i NetSkateVisualizer jsnmp(tm) Enterprise Copyright (c) 1997-2001 OutBack Resource Group, Inc. All rights reserved
More informationMOTIF XF 取扱説明書
MUSIC PRODUCTION SYNTHESIZER JA 2 (7)-1 1/3 3 (7)-1 2/3 4 (7)-1 3/3 5 http://www.adobe.com/jp/products/reader/ 6 NOTE http://japan.steinberg.net/ http://japan.steinberg.net/ 7 8 9 A-1 B-1 C0 D0 E0 F0 G0
More information1000 Copyright(C)2009 All Rights Reserved - 2 -
1000 Copyright(C)2009 All Rights Reserved - 1 - 1000 Copyright(C)2009 All Rights Reserved - 2 - 1000 Copyright(C)2009 All Rights Reserved - 3 - 1000 Copyright(C)2009 All Rights Reserved - 4 - 1000 Copyright(C)2009
More informationFileMaker Server Getting Started Guide
FileMaker Server 12 2007 2012 FileMaker, Inc. All Rights Reserved. FileMaker, Inc. 5201 Patrick Henry Drive Santa Clara, California 95054 FileMaker Bento FileMaker, Inc. Bento FileMaker, Inc. FileMaker
More informationPowerPoint プレゼンテーション
Copyright 2008 KOZO KEIKAKU ENGINEERING Inc. All Rights Reserved. http://www.kke.co.jp Copyright 2008 KOZO KEIKAKU ENGINEERING Inc. All Rights Reserved. http://www.kke.co.jp 1 Copyright 2008 KOZO KEIKAKU
More information1-3 Perl 1 Perl ( 1) ( ) ( 2) Perl 1 Perl Perl CGI Web Web Perl /usr/bin/perl #! -- ( 2 ) ( 2) ( 2) 2 ( ) Windows http://multilingual-editor.sugutsuka
( Ver. 1.7) 2016 4 http://email-form.sugutsukaeru.jp/ Copyright(c) 2013 Sugutsukaeru Inc. All rights reserved. 1 1-1 Web http://email-form.sugutsukaeru.jp/ 1-2 README.pdf ( ) document.pdf ( ) admin/ CGI
More information2
DX Simulator Copyright 2001-2002 Yamaha Corporation. All rights reserved. Version 1.2, 2002 YAMAHA CORPORATION 2 z x z x c 3 z Windows Macintosh Windows Macintosh x 4 z Windows Macintosh Windows Macintosh
More informationDo No Track 実装ガイド
目次 第 1 章 : Do Not Track の概要 1 背景 Do Not Track の仕組み トラッキングを巡る議論 プライバシー技術と Do Not Tack»» プライバシーポリシー»» オプトアウト Cookie と AdChoices»» Do Not Track と法律 第 2 章 : ケーススタディ 11 ケーススタディ 1 : 広告会社 ケーススタディ 2 : テクノロジープロバイダ
More informationPlan of Talk CAS CAS 2 CAS Single Sign On CAS CAS 2 CAS Aug. 19, 2005 NII p. 2/32
CAS Single Sign On naito@math.nagoya-u.ac.jp naito@math.nagoya-u.ac.jp, Aug. 19, 2005 NII p. 1/32 Plan of Talk CAS CAS 2 CAS Single Sign On CAS CAS 2 CAS naito@math.nagoya-u.ac.jp, Aug. 19, 2005 NII p.
More informationshio_20041207r2.ppt[読み取り専用]
Web 2004 12 7 Web SQL XPath HTTP 5 URL 2 SQL XPath HTTP 3 Cross-Site Scripting : XSS Web Web CGI Web IIS Apache JavaScript/VBscript Web Web IE Web Cookie ID Web Cookie 4 http://server/xss/greeting.asp
More informationFileMaker Server Getting Started Guide
FileMaker Server 13 2007-2013 FileMaker, Inc. All Rights Reserved. FileMaker, Inc. 5201 Patrick Henry Drive Santa Clara, California 95054 FileMaker Bento FileMaker, Inc. FileMaker WebDirect Bento FileMaker,
More information利用者ガイド NAREGI Middleware UMS (User Management Server) 2008 年 10 月 国立情報学研究所 ドキュメントリスト 管理者ガイドグループ IS(Distributed Information Service) IS(Distributed Information Service) - LRPSConfig - SS(Super Scheduler)
More information