1 3 1.1................................ 3 1.2.............................. 3 1.3............................ 4 2 5 2.1............................ 5

Supprimez 17 1 31

1 3 1.1................................ 3 1.2.............................. 3 1.3............................ 4 2 5 2.1............................ 5 2.2...................... 5 2.3....................... 6 2.4......................... 6 2.4.1...................... 6 2.4.2...................... 6 2.4.3...................... 7 2.4.4................ 7 2.4.5...................... 7 2.5.......................... 7 3 SMTP 9 3.1 SMTP............................ 9 3.2 SMTP................. 9 3.2.1 SMTP...................... 9 3.2.2........................ 11 3.2.3 SMTP............ 12 3.2.4 SMTP................... 13 3.3 SMTP.......................... 14 4 Supprimez 15 4.1 Supprimez...................... 15 4.2.............................. 16 4.2.1.......................... 16 4.2.2................. 16 1

5 17 5.1.......................... 17 5.2........................... 17 5.3......................... 17 6 19 6.1............................ 19 6.2 regist.cgi.............................. 20 6.2.1.......................... 20 6.2.2 general..................... 21 6.3 login.cgi.............................. 24 6.4 mailsys.cgi............................. 24 7 34 7.1.......................... 34 8 39 8.1..................... 39 8.2 Supprimez 39 8.3............................... 40 8.4................................ 41 2

1 1.1 ADSL 6000 1982 SMTP(Simple Mail Transfer Protocol) MXLOGIC 2003 3 45 1 2004 3 67 1.2 3

1.3 4

2 2.1 (FTC: Federal Trade Commission) CAN-SPAM CAN-SPAM Do-Not-Spam IT e-words CAN-SPAM 2.2 5

2.3 MTA(Mail Transfer Agent) MUA(Mail User Agent) MUA Outlook MTA sendmail SPAM SPAM IP 2.4 2.4.1 IP IP 2.4.2 IP 6

IP 2.4.3 money m=o=n=e=y 2.4.4 ADSL 2.4.5 Yahoo DomainKeys DomainKeys DomainKeys DNS (http://internet.watch.impress.co.jp/cda/event/2004/11/18/5459.html ) 2.5 7

ADSL 8

3 SMTP 3.1 SMTP SMTP 1982 Jonathan B.Postel RFC(Request For Comment)821 RFC IETF(Internet Engineering Task Force) SMTP MUA MTA MTA MTA SMTP 3.2 SMTP 3.2.1 SMTP SMTP HELO MAIL HELO <SP> <domain> <CRLF> <domain> RCPT MAIL <SP> FROM:<reverse-path> <CRLF> <reverse-path> RCPT <SP> TO:<forward-path> <CRLF> 9

<forward-path> DATA RSET DATA <CRLF> ASCII(American Standard Code for Information Interchange) <CRLF.CRLF> VRFY RSET <CRLF> EXPN VRFY <SP> <string> <CRLF> <string> HELP EXPN <SP> <string> <CRLF> <string> NOOP HELP [<SP> <string>] <CRLF> <string> OK TURN NOOP <CRLF> 10

TURN <CRLF> QUIT QUIT <CRLF> 3.2.2 SMTP 211 214 220 221 250 251 <forward-pa th> 354 <CRLF>.<CRLF> 421 Shutdown 421 450 Busy 451 452 11

500 501 502 503 504 550 551 <forwardpath> 552 553 554 SMTP Activewave SMTP 3.2.3 SMTP SMTP HELO HELO SMTP MAIL MAIL RCPT DATA RESET SMTP 0 NOOP HELP EXPN VRFY SMTP SMTP QUIT QUIT 12

3.2.4 SMTP SMTP <Smith@USC-ISIF.ARPA> <Jones@BBN-UNIX.ARPA> <Green@BBN- UNIX.ARPA> <Brown@BBN-UNIX.ARPA> <Jones@BBN-UNIX.ARPA> <Brown@BBN-UNIX.ARPA> <Green@BBN-UNIX.ARPA> SMTP R: 220 BBN-UNIX.ARPA Simple Mail Transfer Service Ready S: HELO USC-ISIF.ARPA R: 250 BBN-UNIX.ARPA S: MAIL FROM:<Smith@USC-ISIF.ARPA> R: 250 OK S: RCPT TO: <Jones@BBN-UNIX.ARPA> R: 250 OK S: RCPT TO: <Green@BBN-UNIX.ARPA> R: 550 No such user here S: RCPT TO: <Brown@BBN-UNIX.ARPA> R: 250 OK S: DATA R: 354 Start mail input; end with <CRLF>.<CRLF> S: Blah blah blah... S:...etc. etc. etc. S:. R: 250 OK S: QUIT R: 221 BBN-UNIX.ARPA Service closing transmission channel S R 13

3.3 SMTP SMTP RCPT 14

4 Supprimez 4.1 Supprimez SMTP BBS(Bulletin Board System) BBS BBS 4 1 1 SMTP ID BBS 4.2.2 15

4.2 4.2.1 4.2.2 16

5 Top 5.1 ID ID ID 5.2 ID 5.3 17

18

6 6.1 regist.cgi login.cgi mailsys.cgi 3 CGI TOP pwddata.cgi ID ID ( ) \n ID imgpass.data ID.log \n ID 0 1 ID.time ID \n <> ( )<>Name<> ID<>Subject<>Comment<> IP<> (time )<> ID<>\n CGI time 19

ID.list ID ID ID ID ID ( )\n ID ID ID ID ID ( )\n 6.2 regist.cgi regist.cgi mode mode general list crypt 6.2.1 mailsys.cgi 20

mode general list 6.2.2 general ID imgpass.data JAVASCRIPT JAVASCRIPT 2 html JAVASCRIPT html <script language="javascript"> var imglist = new Array( "cat01.jpg","cat02.jpg","cat03.jpg","cat04.jpg","cat05.jpg","cat06.jpg","cat07.jpg","dog03.jpg","dog04.jpg","dog06.jpg","dog07.jpg","dog08.jpg","saru01.jpg","saru02.jpg","saru04.jpg", "saru05.jpg","saru07.jpg","usa01.jpg", "usa02.jpg","usa03.jpg","usa04.jpg","usa05.jpg","usa06.jpg","usa07.jpg","zou01.jpg","zou02.jpg","zou03.jpg","zou04.jpg","zou05.jpg"); var selectnum = Math.floor((Math.random() * 100)) % imglist.length; var output = "<img WIDTH=100 HEIGHT=100 src=./img/" + imglist[selectnum] + ">"; var output2 = "<input type=hidden name=imgname value=" + imglist[selectnum] + ">"; document.write(output+output2); </script> 21

CGI html <IMG height=100 src="./img/dog03.jpg" width=100> <INPUT type=hidden value=dog03.jpg name=imgname> JAVASCRIPT JAVASCRIPT regislt.cgi mode id crypt ID password imgname answer bmode general list ID ID mailsys.cgi mode id crypt ID 22

adid ID adpassword imgname answer bmode list crypt 1. id ID 2. password 3. id pwddata.cgi ID ID 4. imgname answer imgpass.data 5. adid adpassword 6. password 7. ID pwddata.cgi 8. ID.log 0 1 adid \n 9. ID.time 10. adid.list id 23

11. id.list adid 12. 6.3 login.cgi ID mailsys.cgi mode id login ID password 6.4 mailsys.cgi CGI regist.cgi mode regist.cgi ID ID ID id password mode login mailsys.cgi ID 24

menu form checkmessage regist listlist listlog listform list deleteform deletemember mlist 25

login 2 mailsys.cgi id password mailsys.cgi mode id menu password ID ID ID ID mode login mailsys.cgi ID mode id form password reid resub ID Re 26

menu mailsys.cgi mode id form password mailsys.cgi mode id listlist password form Name Mailto Subject Comment mailsys.cgi 27

mode id checkmessage password name email sub Name Mailto Subject precomment Comment mode login checkmessage mailsys.cgi mode regist id password name email sub precomment 28

regist 1. name 2. comment 3. 4. 5. 6. 1 2 3 4 id.list 5 id.time id.time 6 ID id listlist id id.list ID id mode login id.list ID mailsys.cgi mode listlog 29

id password listi id.list ID listlog mode2 mode2 id mode listlist mailsys.cgi mode form 30

id password reid listi mailsys.cgi mode id mlist password listi mailsys.cgi mode listlog mode2 id delete password listi del_xx xx mailsys.cgi mode id listform 31

password listi mailsys.cgi mode deleteform id password listi listform ID mailsys.cgi mode id list password listi membername ID list membername pwddata.cgi ID membername listi.list ID 32

listi.list membername membername.list listi deleteform ID mailsys.cgi mode id deletemember password listi membername ID deletemember listi.list membername listi.list membername memberlist.list listi ID listi.list mlist listi.list ID 33

7 Supprimez 7.1 Q1. 7.1: Q1 34

Q7. Q6 WEB WEB Q8. 35

Q2. 7.2: Q2 Q3. Supprimez 7.3: Q3 36

Q4. Supprimez 7.4: Q4 Q5. 7.5: Q5 37

Q6. Supprimez 7.6: Q6 Q9. 3 MSN 38

8 8.1 Q8 Q1 Q5 ID Q2 Q7 WEB WEB Q6 Q7 Q4 8.2 Supprimez 39

1000 1000 1 10 1000 10000 160 8.3 BBS Q4 ID 40

IP ID IP ID A B A B B A 8.3.1 DomainKeys 8.4 41