Differences between revisions 10 and 11
Revision 10 as of 2022-06-02 01:52:48
Size: 1535
Comment:
Revision 11 as of 2022-06-02 01:53:32
Size: 1582
Comment:
Deletions are marked like this. Additions are marked like this.
Line 6: Line 6:

https://www.youtube.com/watch?v=jgWS4TdLFAE

1. Security

1.1. lock

https://www.youtube.com/watch?v=D6vioIPVzM4

https://www.youtube.com/watch?v=jgWS4TdLFAE

1.2. DOJ

https://www.justice.gov/opa/pr/department-justice-announces-new-policy-charging-cases-under-computer-fraud-and-abuse-act

  • Department of Justice Announces New Policy for Charging Cases under the Computer Fraud and Abuse Act

Gigazine記事 https://gigazine.net/news/20220520-doj-new-cfaa-policy/

https://www.vice.com/en/article/v7d9nb/department-of-justice-security-researchers-new-cfaa-policy

https://people.scs.carleton.ca/~paulv/toolsjewels.html

1.3. identity theft

お名前.com下の/アカウントを盗まれるとどんな影響があるのか。-- ToshinoriMaeno 2022-05-20 07:16:43

1.4. WordPress

Latest WordPress security news

https://portswigger.net/daily-swig/wordpress

WordPress sites getting hacked ‘within seconds’ of TLS certificates being issued

  • インストール手順が悪いと、侵入を許すことに。-- ToshinoriMaeno 2022-05-09 12:28:35

https://twitter.com/matsuu/status/1522751803242455043?s=20&t=PQmzgfKsqbNLXEew0gsp8w

Let's EncryptなどでSSL証明書取得を行うと
CT(Certificate Transparency)を監視している悪意ある第三者が即座にアクセスしてきて
初期インストール状態のWordPressにバックドアを仕掛ける手口が横行。

ここの要求は実現困難: https://twitter.com/matsuu/status/1522753612161511424?s=20&t=PQmzgfKsqbNLXEew0gsp8w

MoinQ: Security (last edited 2023-12-11 14:50:02 by ToshinoriMaeno)