䉶䉨䊠䊥䊁䉞䈮㈩ᘦ䈚䈢䉟䊮䉺䊷䊈䉾䊃ᔕ↪䉲䉴䊁䊛䈱᭴▽
* **
᧻ᧄືᆎ ጟ↰ ᱜ
Construction of the Internet Application Systems Designed in Consideration of Security
ATSUMOTO KADA
Satoshi M and Tadashi O
When designing the Internet application systems, it is important to consider in security. This paper deals with causes and measures where security holes happen. On the basis of our experience of constructing the systems, we report our practices such as a note in regard to Web-based programming, a code review for programs developed, an adoption of safe mechanisms.
, Security, Web-based system Keywords. Internet application system
㧝㧚ߪߓߦ
ᚒޘߩ⎇ⓥቶߢߪ㧘એ೨߆ࠄၞડᬺߣหߢࠗ
ࡦ࠲ࡀ࠶࠻ࠍ↪ߒߚ⒳ޘߩࠪࠬ࠹ࡓ㐿⊒ࠍⴕߞ ߡࠆ
1-4
㧚ᦨㄭ㐿⊒ߒߚࠪࠬ࠹ࡓߪࠗࡦ࠲ࡀ࠶࠻ߦᏱᤨធ⛯ߢ㐿ㆇ↪ߐࠇߡ߅ࠅ㧘ࠠࡘ࠹ࠖ
㕙ߩ⢿ᆭߦᏱߦߐࠄߐࠇߡࠆ㧚ߐࠄߦ㧘⸳⟎వߩ ડᬺߦᖱႎㅢାߦ㑐ߔࠆ㜞ᐲߥ⍮⼂ࠍᜬߞߚᛛⴚ⠪
߇ࠆ႐วߪዋߥߊ㧘ၞߣㅪ៤ߒߚࠪࠬ࠹ࡓ㐿⊒
ߦ߅ߡ㧘ࠠࡘ࠹ࠖߩ⏕ߣోߥ߳ߩ㈩ ᘦߪ㊀ⷐߥ⺖㗴ߢࠆ㧚
ᧄ⺰ᢥߢߪ㧘ၞડᬺߣหߢోߥࠪࠬ࠹ࡓࠍ
ଔߦ㐿⊒ߔࠆߚߩᚻᴺߣታ〣ࠍขࠅߍߡ
ࠆ㧚ࠗࡦ࠲ࡀ࠶࠻ࠍ↪ߒߚࠪࠬ࠹ࡓߪ㧘ਛᩭߣ ߥࠆࡀ࠶࠻ࡢࠢࠨࡃߣߘߩߢേߔࠆࡊࡠࠣ
ࡓ߇㊀ⷐߥߩߢ㧘ߎࠇࠄߩోᕈࠍ㜞ࠆᣇᴺࠍ ᬌ⸛ߔࠆ㧚ߐࠄߦߎࠇࠄߩᬌ⸛⚿ᨐ߇㧘ታ㓙ߩࠪࠬ
࠹ࡓߦ߅ߡߤߩࠃ߁ߦᵴ߆ߐࠇߡࠆ߆ࠍౕ⊛
ߦႎ๔ߒߚ㧚
ߢߪోᕈࠍߟߢ㊀ⷐߥࠠࡘ࠹ࠖࡎ 㧞㧚
࡞ߩ⊒↢ⷐ࿃ࠍᢛℂߒ㧘㧟㧚ߦ߅ߡࠠࡘ࠹
ࠖߦ㈩ᘦߒߚࠪࠬ࠹ࡓ㐿⊒ߩⷐὐࠍㅀߴࠆ㧚㧠㧚ߢ
ၞડᬺߣหߢ㐿⊒ߒߚࠪࠬ࠹ࡓߦ߅ߡ㧘ࠠ
ේⓂฃઃ ᐔᚑ㧝㧥ᐕ㧤㧟㧝ᣣ
㧔 㧕
*
ኾ⑼㔚ሶᖱႎࠪࠬ࠹ࡓᎿቇኾ⑼ୃੌ↢ ᐔᚑ㧝㧤ᐕᐲ ᖱႎᎿቇ⑼**
ࡘ࠹ࠖኻ╷߇ߤߩࠃ߁ߦㆡ↪ߐࠇߡࠆ߆ౕ⊛
ߦㅀߴࠆ㧚
㧞㧚ࠠࡘ࠹ࠖࡎ࡞ߩߢ߈ࠆⷐ࿃
ࠠࡘ࠹ࠖࡎ࡞ߣߪ㧘ࠄ߆ߩⷐ࿃ߦࠃࠅ↢
ߓࠆࠪࠬ࠹ࡓߩࠠࡘ࠹ࠖߩᒙὐߩߎߣࠍ߁ 㧚ࠠࡘ࠹ࠖࡎ࡞ߪ㧘ਇᱜⴕὑߩ♻ญߣߒߡ
5
ࠊࠇࠆߎߣ߇ᄙߊ㧘․ߦ࠰ࡈ࠻࠙ࠚࠕߩᰳ㒱ߦࠃ
㧘 㧘
ࠆࠠࡘ࠹ࠖࡎ࡞ߩ႐ว ୃᱜߦᤨ㑆߇߆߆ࠅ ߘߩ㑆ή㒐ߣߥߞߡߒ߹߁ߎߣ߇ᄙߚ㗴ߢ
ࠆ㧚ߎߎߢߪ㧘ࠠࡘ࠹ࠖࡎ࡞ߩߢ߈ࠆ৻⥸
⊛ⷐ࿃ߣ㧘ᚒޘ߇᭴▽ߔࠆࠪࠬ࠹ࡓߢ㊀ⷐߥ
Web
ࠕࡊࠤ࡚ࠪࡦߦኻߔࠆ㗴ࠍᬌ⸛ߔࠆ㧚৻⥸⊛ߥࠠࡘ࠹ࠖࡎ࡞
䋲䋮䋱
ࠠࡘ࠹ࠖࡎ࡞ߩߢ߈ࠆ৻⥸⊛ⷐ࿃ߣߒߡ㧘
ᰴߩ㧟ߟ߇㊀ⷐߢࠆ㧚 ⸳ቯߩࡒࠬ
1
ࠠࡘ࠹ࠖᗧ⼂ߩਇ⿷
2
ࠪࠬ࠹ࡓߩᰳ㒱߿ࡔࠞߩኻᔕߩਇ
3
ࠠࡘ࠹ࠖଚኂߩਥߥේ࿃߇ ߩ⸳ቯࡒࠬߦ
1
ࠃࠆ߽ߩߢ㧘⚂ඨᢙߪ⸳ቯࡒࠬߦ࿃ߔࠆߣ⸒ࠊࠇ ߡࠆ㧚⸳ቯࡒࠬࠍߥߊߔߚߦ㧘ࠠࡘ࠹ࠖᯏ⢻ࠍߔߴߡ߃߫ోߥࠦࡦࡇࡘ࠲ߣߥࠆ㧚ߒ߆ ߒ㧘ൎᚻ߇ᖡߊߥࠆߎߣ߇ᄙߩߢ㧘ᐢߊࠊ ࠇߡࠆࡄ࠰ࠦࡦߢߪ࠺ࡈࠜ࡞࠻ߢ㒢ࠍ߆ߌߡ
ߥ㧚ߘߩߚ㧘ήᗧ⼂ߩ߁ߜߦ⢿ᆭߦߐࠄߐࠇߚ ࠅ㧘㒢ࠍ߆ߌࠆߣ߈ߦ⸳ቯࡒࠬࠍᒁ߈ߎߒ߿ߔ
㧚ߕࠇߦߒߡ߽㧘ࠠࡘ࠹ࠖኻ╷ߣൎᚻ
ߩࡃࡦࠬࠍߣࠆߎߣ߇ᄢಾߣߥࠆ㧚
ᰴߦ㧘 ߩࠠࡘ࠹ࠖᗧ⼂ߩਇ⿷߇ࠆ㧚ߎ
2
ࠇߪ࠰ࠪࡖ࡞ࠛࡦࠫ࠾ࠕࡦࠣߣࠊࠇࠆ߽ߩ ߢ㧘㔚ߢ▤ℂ⠪ߦߥࠅߔ߹ߒߡࡄࠬࡢ࠼ࠍ⡞߈ߔߣߞߚᚻญ߇ࠆ㧚㔚એᄖߦ߽㧘ࠧࡒ⟎߈ ႐ߦⓍࠎߢࠆࠧࡒߩਛ߿ࠨࡃ࡞ࡓߦᔋ߮ㄟࠎ ߢࡄࠬࡢ࠼ߩࡔࡕࠍតߒߚࠅ㧘ࡄࠬࡢ࠼ࠍജ ߒߡࠆߣߎࠈࠍᓟࠈ߆ࠄߩߙ߈ߚࠅߒߡᚻߔ ࠆ㧚▤ℂ↪ࡄࠬࡢ࠼߇㊀ⷐߢࠆߩߪ߽ߜࠈࠎߩ ߎߣ㧘৻⥸࡙ࠩߩࡄࠬࡢ࠼ߢߞߡ߽ᚻߢ߈ 㧘 ࠇ߫
LAN
߿ࠨࡃ߳ߩࠕࠢࠬ߇ኈᤃߦߥࠆߚߤߩࠃ߁ߥࡄࠬࡢ࠼ߢߞߡ߽ṳࠇࠆߎߣ߇ߞ ߡߪߥࠄߥ㧚ߒ߆ߒ㧘ࡄࠬࡢ࠼ߩ▤ℂߪ࡙ࠩ
ੱߦᆔߨࠄࠇࠆߚ㧘ฦੱߩࠠࡘ࠹ࠖᗧ⼂
ߩ㗴ߣߥࠅኻ╷߇㔍ߒ㧚
ᦨᓟߦ㧘 ߩࠪࠬ࠹ࡓߩᰳ㒱߿ࡔࠞߩኻᔕߩ
3
ਇ߇ࠆ㧚ߎࠇߪࠠࡘ࠹ࠖ㗴ߩਛߢ⸳ቯࡒࠬߦᰴߢᄙ㗴ߢ㧘ߒ߆߽ࠛࡦ࠼࡙ࠩߢߪኻ
ಣߢ߈ߥߎߣ߽ࠅ࿎ߞߚ㗴ߢࠆ㧚ࡊࡠࠣ
ࡓߦࠠࡘ࠹ࠖ㗴߇⊒ⷡߔࠆߣ㧘ࡔࠞߪࡄ࠶
࠴ࠍ㈩Ꮣߒߡ㗴ࠍ⸃ߒߡࠆ㧚ߒ߆ߒ㧘㗴߇
⊒ߐࠇߡ߆ࠄࡄ࠶࠴߇ࠬߐࠇࠆ߹ߢߩ㑆ߪ ή㒐ߥ⁁ᘒߦߐࠄߐࠇࠆ㧚ߐࠄߦ㧘ࡄ࠶࠴ࠍᚻ
㧘 㧚
ߒㆡ↪ߔࠆᬺߪ࡙ࠩ߇ⴕࠊߥߌࠇ߫ߥࠄߥ
ࡄ࠶࠴ࠍᒰߡࠆߎߣߢ߶߆ߩਇౕว߇ߎࠆߎߣ߽
ࠆߒ㧘ࡄ࠶࠴ࠍᚻߒߡᒰߡࠆߦߪᚻ㑆߇߆߆ࠆ ߚ㧘㕙ୟߊߐ߇ࠅߩ࡙ࠩߥࠄߚߒߚ㗴ߢߪ ߥߣࡄ࠶࠴ࠍᒰߡߕ㧘ࠠࡘ࠹ࠖࡎ࡞߇⟎
ߐࠇࠆน⢻ᕈ߇ࠆ㧚
ࠕࡊࠤ࡚ࠪࡦ㐿⊒ߦኻߔࠆᵈᗧ 䋲䋮䋲
Web
2004 ᐕߩ⺞ᩏߢߪ
㧘Web
ࠕࡊࠤ࡚ࠪࡦߩ⚂6
ഀߦ⥌⊛ߥᰳ㒱߇ࠅ㧘ߘࠇએᄖߦ߽ࠄ߆ߩࡃ
ࠣ߇ࠅ㧘ోߥ
Web
ࠕࡊࠤ࡚ࠪࡦߪᢙ㧑ߒ ߆ߥ߆ߞߚߣ߁ႎ๔߇ࠆ 㧚ߘࠇߛߌߢߥߊ㧘6
⣀ᒙߥ Web
ࠕࡊࠤ࡚ࠪࡦߦኻߒߡୃᱜࠍⴕߞ ߚߣߒߡ߽㧘98 㧑ߪ⣀ᒙᕈ߇ᱷߞߡߒ߹߁ߣ߁
࡚ࠪ࠶ࠠࡦࠣߥ⺞ᩏ⚿ᨐ߽ࠆ
6
㧚Web
ࠕࡊࠤ࡚ࠪࡦߩ㐿⊒ߢߪ㧘ᱜߒ⍮⼂ߣᚻᴺࠍℂ⸃ߒߡ ߅߆ߥߌࠇ߫ߥࠄߥ㧚
ࠕࡊࠤ࡚ࠪࡦߦኻߔࠆઍ⊛ߥ᠄ᚻ
Web
ᴺߦ㧘ᰴߩࠃ߁ߥ߽ߩ߇ࠆ 㧚
7
Path Traversal
SQL Injection
OS Command Injection
Session Hijacking/ Replay
Buffer Overflow
Cross Site Scripting
Parameter Manipulation
Backdoor & Debug Options
Forceful Browsing
Client Side Comment
Error Codes
ߎࠇࠄߩ᠄ߪᓥ᧪ߩ
OS
߿HTTP
࠺ࡕࡦ߳ߩ᠄ߣ⇣ߥࠅ
ᔅߕߒ߽ࠨࡃߩ▤ℂ⠪ᮭ㒢ࠍᅓ߁ߎߣ߇⋡⊛
ߢߪߥ
Web
ࠕࡊࠤ࡚ࠪࡦߏߣߦ᠄ߩࡄ࠲ࡦ ߇㆑߁ᔅߕߒ߽ࡈࠔࠗ࡞ࠍᡷߑࠎߔࠆࠊߌߢߪߥ
࠙ࠗ࡞ࠬ߿ࡢࡓࠍㅍࠅߟߌߡࠆࠊߌߢߪߥ
߶ߣࠎߤߩ᠄߇ࡠࠣߦᱷࠄߥ
ߥߤߩ․ᓽ߇ࠅ㧘ၮᧄ⊛ߥኻ╷ߦട߃ߡ㧘↪Ბ
㓏ߛߌߢߥߊ㐿⊒Ბ㓏ߢ߽㧘᠄ᗧ࿑ߦᔕߓߚኻ╷
ࠍߣࠆᔅⷐ߇ࠆ㧚
߃߫㧘
Cross Site Scripting
XSS 㧕ߪ㧘ߥࠅߔ߹
ߒߥߤߩ㗴ࠍᒁ߈ߎߔ⣀ᒙᕈߩ৻ߟߢࠆ㧚ឝ
␜᧼߿ࡈࠜࡓߩജ⏕↹㕙ߢ㧘࡙ࠩ߇ജߒ
ߚ୯ࠍߘߩ߹߹␜ߒߡࠆࠕࡊࠤ࡚ࠪࡦߢߎࠅ߁ࠆ㧚
HTML
࠲ࠣࠍജߒߚ㓙ߦ࠲ࠣ߇ല ߥ␜ࠍߔࠆࠅߦߥߞߡࠆࡊࡠࠣࡓߪ㧘㕖Ᏹ ߦෂ㒾ߢࠆߣ⼂ߔߴ߈ߢࠆ㧚XSS
ߩ⣀ᒙᕈ ࠍߟߚߥࠅߔ߹ߒ᠄߇㗴ߣߥࠆߩߪ㧘࡙ࠩߪ․ߦⵍኂߦㆣ߁ࠃ߁ߥߎߣࠍⴕߞߡߥߩߦⵍ ኂߦㆣߞߡߒ߹߁ߎߣ߇ࠆߚߢࠆ㧚
XSS
ኻ╷ߣߒߡ㧘ജ୯࠴ࠚ࠶ࠢࠍࠪࠬ࠹ࡓࡌ࡞ߢⴕࠊ ߥߌࠇ߫ߥࠄߥ㧚
ోߥࡊࡠࠣࡓࠍᚑߔࠆߚߦߪ㧘⸳⸘Ბ㓏 ߆ࠄࠠࡘ࠹ࠖߦߟߡ⏕ࠍⴕ㧘ߔߢߦቢᚑ ߐࠇߚోᕈߩ㜞ࡕࠫࡘ࡞߇ࠆ႐ว㧘ߘࠇࠍ
ᵹ↪ߔࠆ㧚߹ߚ㧘ౣ↪ߢ߈ࠆࠃ߁ߥᒻߢࠨࡉ࡞
࠴ࡦࠍ⸳⸘ߒ㧘ࠠࡘ࠹ࠖߦ㊀ὐࠍ⟎ߡ㐿⊒ߔ
㧘 㧚 㧘
ࠆߎߣߢ
ᓟߩ㐿⊒ߦᓎ┙ߡࠆߎߣ߇ߢ߈ࠆ ৻ᣇ
ࠪࠬ࠹ࡓࠍ৻߆ࠄ㐿⊒ߔࠆ႐วߪ㧘ోᕈࠍ⠨ᘦߒ ߚࡊࡠࠣࡒࡦࠣ⸒⺆ࠍ↪ߔࠆߎߣߢ㧘Ყセ⊛◲
නߦࠠࡘ࠹ࠖᕈ⢻ࠍߍࠆߎߣ߇ߢ߈ࠆ㧚
ࡊࡠࠣࡓࠍታ㓙ߦᦠߊߢߩᦨ߽㊀ⷐߥ⇐ᗧὐ ߪ㧘ࠊ߆ࠅ߿ߔࡊࡠࠣࡓࠍᦠߎߣߢࠆ㧚⺒ߺ ߦߊࡊࡠࠣࡓߢߪ㧘ߞߡࠆᧄੱ߽ࡒࠬࠍߒ߿ߔߊߥࠆߒ㧘ᓟ߆ࠄࠦ࠼ࡆࡘࠍߒߡࠆੱ
㧘 㧚
߽ಽ߆ࠅߠࠄߊ ࡃࠣࠍ⊒ߔࠆߎߣ߇࿎㔍ߦߥࠆ ࠊ߆ࠅ߿ߔߊ㧘ࡃࠣࠍࠅߦߊࡊࡠࠣࡓࠍᦠߊ ߚߩࡐࠗࡦ࠻ߣߒߡ㧘ᰴߩࠃ߁ߥ߽ߩ߇ࠆ㧚 ᄌᢙߦ␜⊛ߦೋᦼ୯ࠍઍߔࠆ㧚
1
↢ᚑߒߚᄌᢙ߿ࠝࡉࠫࠚࠢ࠻ߪ㧘ᔅⷐ߇ߥߊߥ
2
ࠇ߫␜⊛ߦ⸃ߔࠆ㧚ᄌᢙࠍት⸒ߒߡ↪ߒߡࠆ߆⏕ߔࠆ㧚ᄌᢙ
3
ት⸒ߩᔅⷐ߇ߥ Perl
ߢߞߡ߽㧘ᄌᢙฬࠍ] _ ߢ࿐ࠎߢ⏕ߦߔࠆ㧚ᔅⷐߩߥࠣࡠࡃ࡞ᄌᢙࠍߞߡߥ߆⏕
4
㧘 㧚
ߒߢ߈ࠆߛߌࡠࠞ࡞ᄌᢙࠍ߁ࠃ߁ߦߔࠆ
ࠦࡔࡦ࠻߇ᦠ߆ࠇߡࠆ߆⏕ߒ㧘ઁੱ߇⺒5
ߎߣࠍᗐቯߒߡࠦࡔࡦ࠻ࠍߟߌࠆࠃ߁ߦߔࠆ㧚 ࡊࡠࠣࡓߩߜߎߜߢቯᢙࠍቯ⟵ߒߡߥ
6
߆⏕ߒ㧘ቯᢙߪࡊࡠࠣࡓߩೋᦼൻㇱಽߦᄌᢙ ߦࠇߡ↪ߔࠆࠃ߁ߦߔࠆ㧚
ࠗࡦ࠺ࡦ࠻ߩᣇᴺ߿ᷓߐߥߤ㧘ᦠᑼߪߘࠈߞߡ
7
ࠆ߆⏕ߔࠆ㧚
㧟㧚ࠠࡘ࠹ࠖߦ㈩ᘦߒߚࠪࠬ࠹ࡓ㐿⊒
ోߥࠪࠬ࠹ࡓࠍታߔࠆߚߦߪ㧘ၮ⋚ߣߥࠆ ࡊࡠࠣࡓߦࠠࡘ࠹ࠖࡎ࡞߇ߞߡߪߥࠄߥ
㧚ߎߩ㗴ߦߪᚒޘߪ㧘ࠝࡊࡦ࠰ࠬ࠰ࡈ࠻࠙
ࠚࠕࠍᵴ↪ߔࠆߎߣߢኻᔕߒߡࠆ㧔⚦ߦߟߡ ߪᢥ₂
4
ߦ⼑ࠆ 㧚㧕
ᰴߦ㧘ࠪࠬ࠹ࡓࠍታߔࠆߩߦᔅⷐߢㆡಾߥᛛⴚ ࠍណ↪ߒ㧘ࡊࡠࠣࡓᚑߢߩᵈᗧࠍࠅߥ߇ࠄ㐿
⊒ߔࠆ㧚ߐࠄߦ㧘㐿⊒ߒߚࡊࡠࠣࡓߪ㧘േ⏕
ߛߌߢߥߊ㧘ࠠࡘ࠹ࠖ㈩ᘦࠍߚࠦ࠼ࡆ
ࡘࠍⴕ߁ߴ߈ߢࠆ㧚ᦨᓟߦ㧘ታㆇ↪ߦࠆߣ߈ ߪᱜߒ⸳ቯࠍⴕߞߡోߥㆇ↪ࠍᆎࠆߣߣ߽ߦ㧘ߘߩᓟߦ⊒ߐࠇߚࠠࡘ࠹ࠖࡎ࡞ࠍㅦ߿
߆ߦ߰ߐߋࠍḰߒߥߌࠇ߫ߥࠄߥ㧚 ߢߪᚒޘ߇ណ↪ߒߚᛛⴚߩⷐߣࠦ࠼ࡆ 㧟㧚
ࡘߩᣇᴺߦߟߡㅀߴࠆ㧚
ࠠࡘ࠹ࠖߦ㑐ㅪߒߚ↪ᛛⴚ 䋳䋮䋱
వߦ߽ㅀߴߚࠃ߁ߦ㧘ࠪࠬ࠹ࡓࠍోߦߟߚ
ߦߪ㧘ㆡಾߥᛛⴚࠍㆬᛯߒᱜߒߊࠊߥߌࠇ߫ߥࠄ ߥ㧚ߎߎߢߪ㧘ࠗࡦ࠲ࡀ࠶࠻ᔕ↪ࠪࠬ࠹ࡓߩ᭴
▽ߢណ↪ߒߚᛛⴚߩⷐࠍขࠅߍࠆ㧚
߹ߕ㧘ࠨࡃࡑࠪࡦߩၮ⋚ߣߥࠆ
OS
ߦ㑐ㅪߒߚ ߎߣࠍㅀߴࠆ ᚒޘߪᓥ᧪߆ࠄ㧚OS
ߣߒߡFreeBSD 8
ࠍណ↪ߒߡࠆ㧚
FreeBSD
ߪ㧘ࡀ࠶࠻ࡢࠢ߿ࠠࡘ࠹ࠖߥߤߦ㑐ߒߡᦨᣂᯏ⢻ࠍታⵝߒ㧘߆ߟ㜞⽶
⩄ᤨߦ߽ቯߢᒝജߥ Unix ♽ OS
ߢࠆ㧚ࠝࡊ ࡦ࠰ࠬ࠰ࡈ࠻࠙ࠚࠕߣߒߡࠠࡘ࠹ࠖࡄ࠶࠴߽ㄦㅦߦឭଏߐࠇࠆߚ㧘ోߢቯߥࠨࡃࠍ᭴▽
ߔࠆߚߩၮ⋚ߦߥߞߡࠆ㧚
ߐࠄߦ㧘
FreeBSD
ߦߪోࠍ㜞ࠆᛛⴚ߇ታⵝߐchroot Unix
ࠇߡ߅ࠅ㧘ߘߩ৻ߟߦ ߇ࠆ㧚ߎࠇߪ
ࠪࠬ࠹ࡓࠦ࡞ߩ৻ߟߢ㧘ࡈࠔࠗ࡞ࠪࠬ࠹ࡓߩ࡞
࠻࠺ࠖࠢ࠻ߩ⟎ࠍᄌᦝߔࠆߣ߁߽ߩߢ
ࠆ㧚ߎߩᯏ⢻ࠍᵴ↪ߔࠆߎߣߢ㧘࡙ࠩ߇ࠪࠬ࠹ࡓ ࡈࠔࠗ࡞߿ઁߩ࡙ࠩߩ࠺ࠖࠢ࠻߳ࠕࠢࠬߔ ࠆߎߣࠍቢోߦ㒐ᱛߢ߈ࠆ㧚ߐࠄߦ
chroot
ߩᔨ㧘 㧚
ࠍᒛߒ ߡ
FreeBSD
ߦߪJail
߇ታⵝߐࠇߡࠆ9
ߣߪ㧘ᗐ
ࡑࠪࡦࠍታߔࠆᯏ⢻ߢ㧘
Jail FreeBSD
ࡑࠪࡦౝߦ㧘߽߁৻ߟߩ ⅣႺࠍ
FreeBSD FreeBSD
㧚 㧘
ࠆߎߣ߇ߢ߈ࠆ
Jail
ߪchroot
ࠍᒛߒߚ߽ߩߢ ࡀ࠶࠻ࡢࠢࡊࡠࠬࠍߡ㧘ోࡊࡠࠬࠍቢోߦ㓒㔌ߢ߈ࠆࠃ߁ߦߒߚ߽ߩߢࠆ㧚
Jail
ߩᗐࡑࠪࡦࠍ↪ߔࠆߎߣߢ㧘᠄߿ࠪࠬ࠹ࡓ࠳࠙ࡦ߇
ߞߚ႐วߢ߽ⵍኂࠍዪᚲⓨ㑆ߦ㐽ߓߎࠆߎߣ߇น
⢻ߣߥࠆ㧚
࿁᭴▽ߒߚࠪࠬ࠹ࡓߪ㧘 WWW
ࠍᔕ↪ߒߚ߽ߩߢࠆ㧚ߎߩਛᔃᛛⴚߪታ❣ࠍⓍߺ㧘ోߥㆇ↪
ߦ㗴ߪߥ㧚ߒ߆ߒ㧘࠺࠲ࡌࠬߣߩㅪ៤߿
ࡑ࡞࠴ࡔ࠺ࠖࠕಣℂߩઃടᯏ⢻ߥߤ㧘ᒛ߇ኈᤃߥ
ߎߣ߇㗴ࠍᒁ߈ߎߔߎߣ߇ࠆ㧚߃߫㧘CGI
Common Gateway Interface
ߪWeb
ࠨࡃߩᯏ⢻ࠍഥߔࠆ⚵ߺߢ 10
㧘WWW
ࠢࠗࠕࡦ࠻߆ࠄ ࠨࡃߩࡊࡠࠣࡓࠍേߒߡಣℂࠍⴕWWW
߁ߎߣߦࠃࠅ㧘േ⊛
HTML
ࠦࡦ࠹ࡦ࠷ࠍ↢ᚑߢ߈ ࠆ㧚CGI
ߪᮡḰജߩ߃ࠆ⸒⺆ߢࠇ߫㧘ߤߩࠃ ߁ߥ⸒⺆ࠍߞߡ߽ታน⢻ߢࠆ㧚৻⥸⊛ߦ᳁߇㐿⊒ߒߚ
ߣ߫ࠇࠆ⸒⺆ߢLarry Wall Perl 11
ࠊࠇߡ߅ࠅ㧘ᚒޘ߽ߎࠇࠍߞߡࠆ㧚
ࠨࡃߪ㧘ࠝࡊࡦ࠰ࠬ࠰ࡈ࠻࠙ࠚࠕ
WWW
ߢࠆ
Apache 12
ࠍߞߡ᭴▽ߔࠆ㧚Apache
ߪ㧘ࡃ࠴ࡖ࡞࠼ࡔࠗࡦߣ߁ᯏ⢻ࠍ߽ߞߡࠆ㧚ߎߩᯏ
⢻ࠍ߁ߣ㧘㧝บߩࠨࡃࡑࠪࡦߦᦨૐ৻ߟߩ
IP
ࠕ࠼ࠬࠍഀࠅᝄࠆߛߌߢ㧘ⶄᢙบߩWWW
ࠨࡃߣหߓᓎഀࠍᨐߚߔߎߣ߇ߢ߈ࠆ㧚
Apace
ߩࡃ࠴ࡖ࡞࠼ࡔࠗࡦߦߪ㧞⒳㘃ߩᣇᑼ߇ࠆ ৻ߟߪ
㧚IP
ࠕ࠼ࠬߢࡎࠬ࠻ࠍߔࠆᣇᑼߢࠅ㧘߽߁৻ߟ ߪWeb ࡉ࠙ࠩ߇ࠨࡃߦㅍାߔࠆࡎࠬ࠻ฬࠍర
ߦߒߡᔕ╵ߔࠆࡎࠬ࠻ࠍቯߔࠆࡀࡓࡌࠬᣇᑼ ߢࠆ㧚ᦨᓟߦ㧘ᥧภൻᛛⴚࠍขࠅߍࠆ㧚ࡀ࠶࠻ࡢࠢ
ࠍߒߡోߥ࠺࠲឵ࠍⴕ߁ߚߦߪ㧘ᥧภൻ ߒߡㅢାࠍⴕ߁ߎߣ߇ᰳ߆ߖߥ㧚ߎߩߚߦ৻⥸
㧘 㧚
⊛ߦࠊࠇࠆߩߪ
SSH Secure SHell
ߢࠆ13
ࠍ߃߫㧘ᥧภൻߐࠇߚోߥㅢା߇ⴕ߃ࠆSSH
߶߆㧘ࡐ࠻ࡈࠜࡢ࠺ࠖࡦࠣߦࠃࠆធ⛯ߩᒛ߇
ߢ߈㧘ᄙ᭽ߢోߥ↪ᣇᴺࠍኈᤃߦታߢ߈ࠆ߽ߩߣߥߞߡࠆ㧚ߐࠄߦ㧘ࡈࠔࠗ࡞ㅍฃାߦ৻⥸⊛
ߦ↪ߐࠇߡࠆ
FTP
ߪ㧘ᥧภൻ߇ⴕࠊࠇߡ߅ࠄ ߕ㧘࠺࠲߇⋑⡬ߐࠇߡߒ߹߁น⢻ᕈ߇ࠆ㧚ߘࠇSFTP SSH File
ࠍᡷༀߔࠆߚߦ㐿⊒ߐࠇߚߩ߇ߢ㧘ࡄࠬࡢ࠼߿࠺࠲ࠍ ߢ
Transfer Protocol SSH
ᥧภൻߒߡㅍฃାߔࠆߚ㧘ోߥࡈࠔࠗ࡞ߩㅍฃ
ା߇น⢻ߣߥࠆ㧚
ࠦ࠼ࡆࡘ
䋳䋮䋲
ࠠࡘ࠹ࠖࡎ࡞߿ࡃࠣࠍ⊒ߔࠆߚߩᚻᲑ ߣߒߡ㧘ࠦ࠼ࡆࡘ߇ࠆ㧚ࠦ࠼ࡆࡘߣ
ߪ㧘࠰ࠬࠦ࠼ࠍ⺒ߺ㧘㗴ὐ߇ߥ߆ᬌ⸽ߔࠆ ߎߣߢࠆ
14
㧚ࠦ࠼ࡆࡘߦߪ㧘࠷࡞ࠍߞߡⴕ߁⥄േᬌᩏߣ㧘ੱ߇࠰ࠬࠦ࠼ࠍ⺒ࠎߢ࠴
ࠚ࠶ࠢࠍⴕ߁ᚻേᬌᩏ߇ࠆ㧚⥄േൻ࠷࡞ߦߟ
㧘 㧚 㧘
ߡ
࿁ߪ Rats 15
ࠍߞߡ⺞ᩏࠍⴕߞߚRats
ߪ̌ C
㧘C++
㧘PHP
㧘Perl
㧘Python ̍ࠦ࠼ߩ⺞ᩏࠍⴕ
߁ߎߣ߇ߢ߈ࠆ࠷࡞ߢࠆ㧚৻ᣇ㧘ᚻേᬌᩏߪ㧘ੱ߇᭽ᦠ߿࠰ࠬࠦ࠼ࠍ⺒ߺ㧘࠺࠲ߩᛒࠍ
࠴ࠚ࠶ࠢߔࠆ߶߆㧘߃ߡਇᱜߥജࠍⴕ㧘േ
ࠍ࠴ࠚ࠶ࠢߔࠆߎߣ߽ⴕࠊࠇࠆ㧚
⥄േᬌᩏߩ․ᓽߣߒߡ㧘࠴ࠚ࠶ࠢߔࠆੱߩᛛ㊂ߦ ଐሽߒߥߣ߁ࡔ࠶࠻߇ࠆ৻ᣇߢ㧘ᬌᩏṳࠇ
㧚 㧘
߿ᬌᩏਇ⢻ߥ႐ว߇ࠆ ߘࠇߦኻߒߡᚻേ⺞ᩏߪ
࠰ࠬࠦ࠼ߛߌߢߪߥߊ㧘᭽ᦠߥߤߦၮߠߊ
⚦ߥ࠴ࠚ࠶ࠢ߇น⢻ߦߥࠆ㧘ታ㓙ߦേߐߖߡ࠴
ࠚ࠶ࠢߔࠆߎߣ߇น⢻ߣߥࠆ㧚ߒ߆ߒ㧘ᤨ㑆߇߆߆ ࠆ㧘࠴ࠚ࠶ࠢߔࠆੱߩᛛ㊂ߦᄢ߈ߊᏀฝߐࠇࠆߣ
߁㗴߇ࠆ㧚
㧠㧚ࠠࡘ࠹ࠖኻ╷ߩㆡ↪
ࠦ࠼ࡆࡘߩ⚿ᨐ 䋴䋮䋱
ߎࠇ߹ߢߩ⺞ᩏࠍరߦ㧘ቇౝឝ␜᧼ࠪࠬ࠹ࡓ ߩ
3
ࠦ࠼ࡆࡘࠍⴕߞߚ㧚ቇౝឝ␜᧼ࠪࠬ࠹ࡓߪ㧘
ቇ↢߳ߩㅪ⛊㗄ࠍᓥ᧪ߩᒛࠅ⚕ߦࠃࠆ๔⍮߆ࠄ㧘 ᶧ᥏↹㕙ࠍ↪ߒߚ㔚ሶ⊛ߥ␜ߦಾࠅᦧ߃ࠆߎߣ
ߢ㧘ឝ␜᧼▤ℂߩല₸ൻࠍ࿑ࠆࠪࠬ࠹ࡓߢࠆ㧚ߥ ߅㧘ߎߩࡊࡠࠣࡓߪPerl
ߢᦠ߆ࠇߡ߅ࠅ㧘ឝ␜᧼▤ℂࡊࡠࠣࡓߣᣂⷙᛩⓂࡊࡠࠣࡓߩ㧞ߟߩ
߆ࠄߥࠆว⸘ ⴕ⒟ᐲߩࡊࡠࠣࡓߢࠆ㧚CGI 500
ᚻേߢߩࠦ࠼ࡆࡘࠍⴕߞߚ⚿ᨐ㧘ᄢ߈ߥ
ࠠࡘ࠹ࠖߩ㗴ὐߪߥ߆ߞߚ߽ߩߩ㧘ਅ⸥ߩࠃ ߁ߥዊߐߥ㗴ὐ߇ߟ߆ߞߚߩߢ㧘ߚߛߜߦୃᱜ ߒߚ㧚
࠴ࠚ࠶ࠢ߇ਇቢోߥߚ
1 png
ࡈࠔࠗ࡞એᄖ߇ࠕ࠶ࡊࡠ࠼น⢻
ࠛߦߥߞߚ႐วߢ߽ࠛࡔ࠶ࠫߩ
2
␜ߥߒ
ឃઁಣℂ߇ਇቢోߥߚࡈࠔࠗ࡞߇ᦠ߈ߐࠇ
3
ߡߒ߹߁น⢻ᕈࠅᰴߦ㧘ࡀ࠶࠻ࡊࡦ࠻ࠪࠬ࠹ࡓ
3
ߩCGI
ߦߟߡ߽ࠦ࠼ࡆࡘࠍⴕߞߚ㧚ࡀ࠶࠻ࡊࡦ࠻ࠪࠬ
࠹ࡓߪ㧘ࠗࡦ࠲ࡀ࠶࠻ࠍ↪ߒߚ࠺ࠫࠞࡔ↹ࡊ
ࡦ࠻ᵈᢥࠪࠬ࠹ࡓߢ㧘㧠ߟߩ
CGI 㧔ᵈᢥࡊࡠࠣ
ࡓ㧘࡙ࠩ⊓㍳ࡊࡠࠣࡓ㧘ࠨࡓࡀࠗ࡞␜ࡊࡠࠣ
ࡓ㧘ጁᱧ␜ࡊࡠࠣࡓ㧕߆ࠄߥࠆว⸘
2000
ⴕ⒟ᐲߩࡊࡠࠣࡓߢࠆ㧚
Rats Open
߹ߕ㧘 ߦࠃࠆ⥄േᬌᩏࠍⴕߞߚߣߎࠈ㧘
㧘 㧘
㑐ᢙߩ⼊๔߇
15
ࠞᚲMkdir
㑐ᢙߩ⼊๔߇11
ࠞᚲ㑐ᢙߩ⼊๔߇ ࠞᚲ␜ߐࠇߚ㧚 㑐ᢙߣ
Rand 2 Open
㑐ᢙߦߟߡߪ㧘ᒁᢙߦ࡙ࠩജ୯ࠍ↪
Mkdir
ߒߡࠆ႐ว㧘ࡄࠬߩਸ਼ࠅ߃ߥߤߩ㗴ࠍᒁ߈
ߎߔน⢻ᕈ߇ࠆߎߣࠍ␜ߒߡࠆ㧚৻ᣇ㧘
Rand
㑐ᢙߦߟߡߪ㧘ᮡḰߩੂᢙࠫࠚࡀ࠲ߪᕈ⢻߇ ᖡߊ㧘⚿ᨐ߇ࠅ߇ߜߦߥࠆߚ㧘࠶࡚ࠪࡦID
ࠍផ᷹ߒ߿ߔߊߥߞߡߒ߹߁ߎߣ߇ᜰ៰ߐࠇߚ㧚ᜰ៰ߐࠇߚㇱಽࠍ࠴ࠚ࠶ࠢߒߡߺߚߣߎࠈ㧘 Open
㑐ᢙߣRand
㑐ᢙߣߦߟߡ㧘࡙ࠩജࠍᒁᢙߣ ߒߡࠆ߽ߩߪߥ߆ߞߚ㧚৻ᣇ㧘Rand
㑐ᢙߩ㗴 ߪ㧘FreeBSD
ߩPorts
߆ࠄߩੂᢙࠫࠚࡀ࠲ࠍࠗࡦࠬ࠻࡞ߔࠆߎߣߢᡷༀߒߚ㧚
⛯ߡࠦ࠼ࡆࡘࠍᚻേߢⴕߞߚߣߎࠈ㧘 ߢᬌߐࠇߡߥ 㑐ᢙ߿ 㑐ᢙ߇
Rats Open Mkdir
ߊߟ߽ߞߚ㧚⺞ߴߡߺࠆߣ㧘
open FH,filename
ߩࠃ߁ߦᒐߢߊߊߞߡᦠߚ႐วߪ࠴ࠚ࠶ࠢߩኻ
⽎ߣߥࠅ㧘
open FH,filename
ߩࠃ߁ߦᒐߢߊߊࠄߕߦᦠߚ႐วߪ࠴ࠚ࠶ࠢߩ ኻ⽎ߣߥߞߡߥ߆ߞߚ㧚ߩ⥄↱ᐲߩ㜞
Perl
ߩᬌᩏߦߪ㧘߹ࠅะ߆ߥ࠷࡞ߣ߃ࠆ߆߽ߒ ࠇߥ㧚ߘߩઁߩㇱಽߦߟߡ߽࠴ࠚ࠶ࠢࠍⴕ㧘ਇክߥ
ㇱಽߦߪታ㓙ߦਇᱜߥജࠍⴕߞߡߺߚߣߎࠈ㧘
ߊߟ߆ߩ㗴ὐ߇ߟ߆ߞߚߚ㧘ᡷༀߢ߈ࠆㇱಽ ߪᡷ⦟ࠍⴕߞߚ㧚ߟ߆ߞߚ㗴ὐࠍએਅߦ␜ߔ㧚 ࡙ࠩ⊓㍳ߩࡔ࡞ࠕ࠼ࠬᰣߦᡷⴕࠦ࠼ࠍ
1 ᝌߔࠆߣ㧘છᗧߩ࠲ࠗ࠻࡞ᧄᢥࠍᝌߔࠆߎ
ߣ߇น⢻ࠨ࠾࠲ࠗࠫࡦࠣᢥሼߩਇ⿷
2
ኻ╷߇ήᗧ3 XSS
ࡈࠔࠗ࡞એᄖߩ߽ߩ߇ࠕ࠶ࡊࡠ࠼น⢻
4 JPEG
ࡠࠣࠗࡦᄬᢌᤨߩࠛࡔ࠶ࠫ߇ਇㆡಾ
5
ᠲ↹㕙߿6 HTML
ߩHidden
ࡈࠖ࡞࠼ߦࡔ࡞ࠕ࠼ࠬࠍ␜
ᠲ↹㕙ߩࠕ࠼ࠬࡃ߿ࠬ࠹࠲ࠬࡃߩ
7
␜ߥߒ
࡙ࠩ⊓㍳ᤨࡠࠣࠝࡦᤨߩ࠺࠲ࠍᐔᢥߢㅍ
8
ା
ࠍലߦߔࠆᔅⷐ߇ࠆߎߣ߇ᧂ␜
9 JavaScript
ࠗࡦ࠲ࡀ࠶࠻ᔕ↪ࠪࠬ࠹ࡓߣណ↪ᛛⴚ 䋴䋮䋲
ᚒޘߪ㧘࠺ࠫ࠲࡞ࠞࡔߢᓇߒߚ↹ߣᨎᢙ
ࠨࠗ࠭ߩᖱႎࠍࠗࡦ࠲ࡀ࠶࠻ߢㅍାߒᵈᢥࠍฃߌ
ઃߌ㧘ᵈᢥ 30 ಽᓟߦ౮⌀ࠍฃߌขࠆߎߣ߇ߢ߈ࠆ
ࡀ࠶࠻ࡊࡦ࠻ࠪࠬ࠹ࡓࠍ㐿⊒ߒߚ㧔Fig.1 㧕 3
㧚ߎ ߩࠪࠬ࠹ࡓߪ㧘↹⊓㍳߆ࠄᵈᢥ߹ߢߩ৻ㅢࠅߩᯏ⢻ࠍቢᚑߐߖ㧘౮⌀ᐫ߳శࡈࠔࠗࡃߦࠃࠆࠗࡦ࠲
ࡀ࠶࠻ធ⛯ⅣႺࠍḰߒ㧘ᐫ⥩ߦ⸳⟎ߒߚࠨࡃߢ
ㆇ↪ߒߡ߈ߚ㧚ߘߩᓟ㧘㧝บߩࠨࡃߢⶄᢙᐫ⥩߳
ኻᔕߔࠆߎߣ߿㧘ㆇ↪ߢ↢ߓߚ㗴ࠍ⸃ᶖߔࠆᯏ⢻
ᒛߩⷐᦸ߇ࠅ㧘⒳ޘߩኻᔕࠍⴕߞߡࠆ㧚ߎߩ ㆊ⒟ߢណ↪ߒߚᛛⴚࠍ㧘ਥߦࠠࡘ࠹ࠖ⏕ߩⷰ
ὐ߆ࠄㅀߴࠆ㧚
Order picture of the NetPrint System Fig.1
ߩࠪࠬ࠹ࡓߪ 1 ␠ߩߺ߇ㆇ༡ߔࠆࠨࡆࠬߢ
ࠆ㧚ߎࠇࠍ㧘ઁߩࠞࡔᐫ߆ࠄ߽↪ߒߚߣ
߁ⷐᦸ߇ߞߚ㧚ߎߩߣ߈㧘ࠦࠬ࠻ࠍᷫߔࠆᔅⷐ ߇ࠆߚ㧘㧝บߩࠨࡃࡑࠪࡦߢⶄᢙߩᐫ⥩ࠍ
Ⓙߐߖࠆߎߣߣߥߞߚ㧚㧝บߩࡑࠪࡦߢⶄᢙߩࠪ
ࠬ࠹ࡓࠍേߐߖࠆᣇᴺߣߒߡ㧘
Jail
ߣࡃ࠴ࡖ࡞࠼ࡔࠗࡦ߇⠨߃ࠄࠇࠆ㧚
Jail Jail
㐿⊒ᒰೋ ࠍ↪ߡࠪࠬ࠹ࡓࠍ᭴▽ߒߚ㧚 ࠍ߁ߣᐫ⥩ᖱႎࠍቢోߦಽ㔌ߢ߈ࠆ߽ߩߩ㧘ࡀ࠶
࠻ࡢࠢ߇⁛┙ߒߡࠆߚ㧘ฦᐫ⥩ߏߣߦ
IP
ࠕ࠼ࠬ߇ᔅⷐߣߥࠆ㧚⁁ߢߪ࿕ቯ
IP
ࠕ࠼ࠬขᓧ⾌↪߇߆ߥࠅ⽶ᜂߣߥߞߡࠆߚ㧘৻ߟߩ IP
ࠕ࠼ࠬߢᷣࡃ࠴ࡖ࡞࠼ࡔࠗࡦࠍ↪ߔࠆߎߣ ߣߥߞߚ㧚ࡃ࠴ࡖ࡞࠼ࡔࠗࡦߢߪ㧘Web ࡉ࠙
ࠩ߇ࡃ࠴ࡖ࡞࠼ࡔࠗࡦኻᔕߢࠆᔅⷐ߇ࠆ㧚ߎ
ߩὐߪ㧘ᒰࠪࠬ࠹ࡓߩផᅑࡉ࠙ࠩ߇ࡃ࠴ࡖ࡞࠼InternetExplorer6 Opera Ver6
ࡔࠗࡦߦኻᔕߒߚ એ㧘એߣߥߞߡࠆߚ㧘ࡃ࠴ࡖ࡞࠼ࡔࠗࡦࠍ↪
ߡࠪࠬ࠹ࡓߩ᭴▽ࠍⴕߞߚ㧚
ࡃ࠴ࡖ࡞࠼ࡔࠗࡦࠍ↪ߔࠆߣ㧘หߓࠨࡃࡑ
ࠪࡦߦⶄᢙᐫ⥩߆ࠄߩࠕࠢࠬ߇ࠆ㧚ᮡḰ⁁ᘒߢ ߪઁᐫ⥩ߩᖱႎ߽߳ࠕࠢࠬߔࠆߎߣ߇น⢻ߣߥࠆ ߚ㧘ኻ╷ࠍᣉߔᔅⷐ߇ࠆ㧚߹ߚ㧘↹ߩ࠳࠙ࡦ ࡠ࠼ࠍⴕ߁ੱ߇ࠦࡦࡇࡘ࠲ߦߒߣߪ㒢ࠄ ߕ㧘ࠪࠬ࠹ࡓࡈࠔࠗ࡞ࠍᦠ߈឵߃ߚࠅ㧘㒰ߒߚࠅ ߒߡߒ߹߁ߣࠪࠬ࠹ࡓ࠻ࡉ࡞ߩේ࿃ߣߥࠆ㧚
ߎߩ㗴ࠍㆱߌࠆߚ㧘
chroot
ࠍ↪ߡࠕࠢࠬ㒢ࠍⴕߞߚ㧚߹ߕ㧘ฦᐫ⥩ߏߣߦ
chroot
ࠍ⸳ቯߒ㧘ઁᐫ⥩߳ߩࠕࠢࠬࠍᱛߒߚ㧚ߐࠄߦ㧘ฦᐫ
⥩㗔ၞߩਛߩ㧘ࡎࡓࡍࠫଔᩰ࠺࠲ᵈᢥ↹
ߩฦ࠺ࠖࠢ࠻ߦ chroot
ࠍ⸳ቯߒ㧘↪ㅜߏߣ ߩ࡙ࠩࠍᚑߔࠆߎߣߢᠲࡒࠬߦࠃࠆࠪࠬ࠹ࡓ࠻ࡉ࡞ࠍ㒐ߢࠆ㧚߹ߚ㧘࠺࠲ォㅍߪߔߴߡ ࠍ㧘┵ᧃࡄ࠰ࠦࡦߦᔅⷐߥࡊࡠࠣࡓ߿
SFTP
㎛ࠍ⥄േߢዉߢ߈ࠆࠃ߁㧘ࠗࡦࠬ࠻࡞ CD
߽ᚑߒߚ㧚
ࡃ࠴ࡖ࡞࠼ࡔࠗࡦࠍ↪ߚࠪࠬ࠹ࡓࠍ᭴▽
ߒ㧘ࠗࡦ࠲ࡀ࠶࠻ߢㆇ↪ࠍ㐿ᆎߒߚ㧚ߎߩᬌ⸛
ߣਗⴕߒߡࠦ࠼ࡆࡘߦࠃࠅࡊࡠࠣࡓࠍ⋥
ߒ㧘ᄙᐫ⥩ኻᔕ߇ኈᤃߦⴕ߃ࠆࠃ߁㧘ᐫ⥩࿕ᖱႎ ߩಽ㔌⛔วࠍⴕߞߚ㧚ߎߩઁߦ㧘ࡄࠬࡢ࠼ߩᄌᦝ ᯏ⢻߿ฎ↹ߩ⥄േ㒰ᯏ⢻ߩታⵝߥߤ㧘ࠃࠅ
߿ߔߊߔࠆᯏ⢻ߩㅊട߽ⴕߞߡࠆ㧚
ᓟߪ㧘ᐫ⥩ࠍㅊടߒߡㆇ↪ߒߚߣ߈㧘ⶄᢙᐫ⥩
ߩࠕࠢࠬ߇
1 บߩࡑࠪࡦߦ㓸ਛߔࠆߚ㧘ߤߩ⒟
ᐲ߹ߢ㧝บߩࡑࠪࡦߢኻᔕน⢻ߥߩ߆ߦߟߡᬌ⸽
ߒߥߌࠇ߫ߥࠄߥ㧚
㧡㧚ߣ߇߈
ᧄ⺰ᢥߢߪ㧘ࠗࡦ࠲ࡀ࠶࠻ᔕ↪ࠪࠬ࠹ࡓࠍ᭴▽
ߔࠆߣ߈㧘ࠠࡘ࠹ࠖ㕙ߢߦᵈᗧߒߤ߁ᬌ⸽ߔ ࠇ߫⦟߆ࠍ㧘ౕ⊛ߥࠪࠬ࠹ࡓ᭴▽߿ᡷ⦟ߩ⚻㛎 ࠍ߽ߣߦㅀߴߚ㧚㧘ⶄᢙߩࠨࡃ߇ታ㓙ߦో
ߦⒿߒߡ߅ࠅ㧘ᚒޘߩ㐿⊒߇ㆡಾߦⴕࠊࠇߡࠆ ߣ⠨߃ߡࠆ㧚
㐿⊒ߒߚࠪࠬ࠹ࡓߪ㧘ࠪࠬ࠹ࡓᧄߣ▤ℂࠍᄖㇱ ߦ⒖ォߒߡࠆ߽ߩ߽ᄙ
16
㧚ߎߩߚ㧘ߎࠇ߆ ࠄߪㆇ↪▤ℂߩ㕙߆ࠄㅪ៤వડᬺߣหߒߡ㧘ోߢቯߥࠪࠬ࠹ࡓㆇ↪ߦദജߒߥߌࠇ߫ߥࠄߥߣ
⠨߃ߡࠆ㧚
⻢ ㄉ
ߎߎߢขࠅߍߚࠪࠬ࠹ࡓߩ㐿⊒ߦߪ㧘రડᬺ
㑐ଥ⠪ߩᄙᄢߥߏදജࠍߚߛ߈߹ߒߚ㧚ߎߩ႐ࠍ
୫ࠅߡᷓߊᓮ␞↳ߒߍ߹ߔ㧚
ෳ ⠨ ᢥ ₂
1
ጟ↰ㄭ⮮ ᵤጊᎿᬺ㜞╬ኾ㐷ቇᩞ♿ⷐ:
No.411999
5-11.
2
ጟ↰㊁ ᵤጊᎿᬺ㜞╬ኾ㐷ቇᩞ♿ⷐ:
No.442002
21- 24.
3
ችጟ═ጟ↰ ᵤጊᎿᬺ㜞╬ኾ㐷ቇᩞ♿ⷐ:
No.46200 4
59-66.
No.48
4
↰ᷨ㊁ጟ↰:
ᵤጊᎿᬺ㜞╬ኾ㐷ቇᩞ♿ⷐ2006 55-60.
㧔ጊญ⋙⸶㧕 ࠦࡦࡇࡘ࠲
5 D. Russell and G.T.Gangemi Sr. :
1994 .
ࠠࡘ࠹ࠖߩၮ␆㧘ࠕࠬࠠ ዪ
ࠕࡊࠤ࡚ࠪࡦߩ⣀ᒙᕈߪୃᓳߒߡ߽ߥ߅ 㧑ߦ⣀
6 Web 93
,http://internet.watch.impress.co.jp/cda/news/2004/
ᒙ ᕈ ߇ ᱷ ࠆ
06/30/3698.html.
ࠕࡊࠤ࡚ࠪࡦߦẜࠠࡘ࠹ࠖࡎ࡞ ╙㧝࿁㨪
7
Web,http://www.atmarkit.co.jp/fsecurity/rensai/Webhole
╙㧝㧞࿁
01/Webhole01.html
.
8
The FreeBSD Project: http://www.freebsd.org/
http://www.freebsd.org/doc/en_US.ISO8859-1/
9
Jails:
books/handbook/jails.html.
10
CGI
ߣߪ߆㧦http://mtlab.ecn.fpu.ac.jp/scripting/about_cgi.html
http://www.perl.com/.
11
The Source for Perl:
12
The Apache HTTP Server Project: http://httpd.apache.org/.
㧔ዊፉ⋙⸶ 㧦ታ↪
13 D.J. Barrett, R.E. Silverman, R.G. Byrnes
㧕SSH
╙ 㧘ࠝࠗࠫࡖࡄࡦ2 2006 .
㧔ᣂ㧘৻ἑ⸶ 㧦ࠠࡘࠕࡊࡠࠣ
14 M.G. Graff, K.R. van Wyk
㧕ࡒࡦࠣ㧙ᄬᢌ߆ࠄቇ߱⸳⸘ታⵝㆇ↪▤ℂ ࠝࠗ
, 2004 120-137.
ࠫࡖࡄࡦ㧔 㧕
