未修正のアプリが数多く残っている状態なので、パブリックな場所での言及には注意して下さい
未修正のアプリが数多く残っている状況ですが、すでに広く情報が公開されており、2.5.2で修正されたという情報が広まると混乱が生じるため広く周知する次第です。
AFNetworking 2.5.1 にMITM攻撃を許す脆弱性があり、2.5.2で修正された、 と報道されていますが、これは誤りです。
Tomoki Aonuma uasi
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| HOSTNAME="localhost" | |
| PORT=${PORT-4000} | |
| NODE="app_$PORT" | |
| if [ -z "$COOKIE" ] | |
| then | |
| COOKIE=$(cat /dev/urandom | tr -dc 'a-zA-Z0-9' | fold -w 32 | head -n 1) | |
| fi |
This is a guide on how to email securely.
There are many guides on how to install and use PGP to encrypt email. This is not one of them. This is a guide on secure communication using email with PGP encryption. If you are not familiar with PGP, please read another guide first. If you are comfortable using PGP to encrypt and decrypt emails, this guide will raise your security to the next level.
この問題は Plack::Middleware::Session::Cookie 0.22以降で対策されました
→ https://gist.github.com/miyagawa/2b8764af908a0dacd43d http://search.cpan.org/~miyagawa/Plack-Middleware-Session/lib/Plack/Middleware/Session/Cookie.pm
事例 → https://speakerdeck.com/mala/how-to-hack-metacpan-dot-org
信頼できないデータを Storable::thaw に渡した場合、任意のコード実行ができることが知られています。
niw
/ create_yosemite_bootable_disk.sh
Last active
April 1, 2019 04:13
How to create a bootable install disk image from Install OS X 10.10 Developer Preview.app
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Since Contents/Resources/createinstallmedia command doesn't work, we need to manually create an disk image. | |
| # Mount InstallESD.dmg | |
| hdiutil mount /Applications/Install\ OS\ X\ 10.10\ Developer\ Preview.app/Contents/SharedSupport/InstallESD.dmg | |
| # Create a temporary writable BaseSystem image. | |
| hdiutil convert /Volumes/OS\ X\ Install\ ESD/BaseSystem.dmg -format UDRW -o rw.dmg | |
| # Get required sectors for packages. | |
| # You'll get these numbers. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # This is a unix wrapper around the erlang vm. It provides the following functionality: | |
| # | |
| # * Spawns in foreground | |
| # * Handle SIGHUP and call RELOADFUNC | |
| # * Handle SIGTERM SIGQUIT and SIGINT telling to the vm to quit | |
| # * Dies if the vm dies (for example kernel killing because out of memory) | |
| # | |
| # Forks and improvements are welcome. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| use v6; | |
| class CA { | |
| has @.data; | |
| has @.rule; | |
| method new ($rule, $length, $population) { | |
| my @data = (1 xx $population, 0 xx $length - $population).pick(*); | |
| my @rule = $rule.fmt("%08b").flip.comb.map({.Int}); | |
| self.bless(*, data => @data, rule => @rule); |