{"id":1708,"date":"2015-08-17T03:58:06","date_gmt":"2015-08-16T18:58:06","guid":{"rendered":"http:\/\/appsweets.net\/blog\/?p=1708"},"modified":"2015-08-17T03:58:06","modified_gmt":"2015-08-16T18:58:06","slug":"signing-akahukuplus","status":"publish","type":"post","link":"http:\/\/appsweets.net\/blog\/2015\/08\/17\/signing-akahukuplus\/","title":{"rendered":"signing akahukuplus"},"content":{"rendered":"<div class=\"856f7bdf6ce2541193600c6e03dd1a56\" data-index=\"1\" style=\"float: left; margin: 16px 16px 16px 0;\">\n<script type=\"text\/javascript\"><!--\r\ngoogle_ad_client = \"ca-pub-5825700137064158\";\r\n\/* 250sq, appsweets-blog *\/\r\ngoogle_ad_slot = \"4837931762\";\r\ngoogle_ad_width = 250;\r\ngoogle_ad_height = 250;\r\n\/\/-->\r\n<\/script>\r\n<script type=\"text\/javascript\"\r\nsrc=\"http:\/\/pagead2.googlesyndication.com\/pagead\/show_ads.js\">\r\n<\/script>\n<\/div>\n<p>\u8d64\u798f\u30d7\u30e9\u30b9\u3092 Unlisted \u306a\u62e1\u5f35\u3068\u3057\u3066 AMO \u306b\u63d0\u51fa\u3057\u3001\u7f72\u540d\u3092\u4ed8\u3051\u3066\u3082\u3089\u3063\u305f\u3002<\/p>\n<p>\u3053\u306e\u969b\u3001\u6a5f\u68b0\u7684\u306a validator \u304c\u8d70\u308a\u3001\u30bd\u30fc\u30b9\u304c\u691c\u8a3c\u3055\u308c\u308b\u3002\u3053\u306e\u691c\u8a3c\u306b\u5f15\u3063\u304b\u304b\u3063\u305f\u5834\u5408\u5373\u6642\u7f72\u540d\u306f\u3055\u308c\u306a\u3044\u304c\u3001AMO \u306e\u4e2d\u306e\u4eba\u306b\u3088\u308b\u30ec\u30d3\u30e5\u30fc\u3092\u7533\u8acb\u3059\u308b\u3053\u3068\u306f\u3067\u304d\u308b\u3002\u4e00\u65b9\u3001\u691c\u8a3c\u306b\u3059\u3079\u3066\u901a\u308c\u3070\u5373\u6642\u7f72\u540d\u304c\u65bd\u3055\u308c\u308b\u3002\u3044\u305a\u308c\u306b\u3057\u3066\u3082\u7f72\u540d\u3055\u308c\u305f xpi \u306f AMO \u306e\u81ea\u5206\u306e\u30a2\u30ab\u30a6\u30f3\u30c8\u5185\u306b\u4fdd\u5b58\u3055\u308c\u308b\u306e\u3067\u305d\u308c\u3092\u30c0\u30a6\u30f3\u30ed\u30fc\u30c9\u3057\u3066\u5225\u306e\u5834\u6240\u3067\u516c\u958b\u3059\u308c\u3070\u3044\u3044\u3002<\/p>\n<p>\u8d64\u798f\u30d7\u30e9\u30b9\u304c\u3053\u306e\u691c\u8a3c\u306b\u3059\u3079\u3066\u901a\u3063\u305f\u308f\u3051\u3060\u304c\u3001\u524d\u306b\u66f8\u3044\u305f\u901a\u308a\u691c\u8a3c\u3092\u884c\u3046 validator \u306f\u672c\u5f53\u306b\u3072\u3069\u3044\u51fa\u6765\u306a\u306e\u3060\u3063\u305f\u3002\u3072\u3069\u3044\u51fa\u6765\u3060\u3057\u3001\u610f\u5473\u306e\u306a\u3044\u8a2d\u8a08\u65b9\u91dd\u306b\u57fa\u3065\u3044\u3066\u4f5c\u3089\u308c\u3066\u3044\u308b\u3002<\/p>\n<p>\u305f\u3068\u3048\u3070 validator \u306f eval \u3084\u3001Function \u3084\u3001innerHTML \u3084\u3001insertAdjacentHTML \u3084\u3001\u5f15\u6570\u304c\u30ea\u30c6\u30e9\u30eb\u3067\u306f\u306a\u3044 createElement \u304c\u3042\u308b\u3068\u5373\u6642\u7f72\u540d\u3092\u62d2\u5426\u3059\u308b\u3002\u305d\u3093\u306a\u308f\u3051\u3067<br \/>\n<code lang=\"javascript\"><br \/>\nconst FUN = '<an encrypted string of \"Function\">';<br \/>\nvar fun = some_decrypt_function(FUN);<br \/>\nvar f = window[fun]('alert(\"wow!\");');<br \/>\n<\/code><br \/>\n\u306e\u3088\u3046\u306a\u611f\u3058\u3067\u3068\u306b\u304b\u304f\u30bd\u30fc\u30b9\u304b\u3089\u30a4\u30b1\u306a\u3044\u30e1\u30bd\u30c3\u30c9\u3084\u30d7\u30ed\u30d1\u30c6\u30a3\u540d\u3092\u96a0\u3059\u3002\u3059\u308b\u3068\u3001validator \u306f\u3053\u308d\u3063\u3068\u9a19\u3055\u308c\u308b\u3002<\/p>\n<p>\u3042\u3042\u3001\u5acc\u306a\u30b3\u30fc\u30c9\u3060\u306a\u3042\u3002\u5acc\u3060\u3057\u3001\u81ea\u52d5\u691c\u8a3c\u306b\u5bfe\u3057\u3066\u3057\u304b\u63d0\u51fa\u3057\u306a\u3044\u5834\u5408\u306b\u306e\u307f\u8a31\u3055\u308c\u308b\u624b\u6cd5\u3060\u3002\u3053\u308c\u3092 preliminary review \u3068\u304b\u306b\u63d0\u51fa\u3057\u305f\u3089\u5fc5\u305a\u300c\u3053\u306e\u51e6\u7406\u3063\u3066\u4f55\u3084\u3063\u3066\u3093\u306e\uff1f\u300d\u3068\u805e\u304b\u308c\u308b\u3057\u3001\u305d\u3057\u3066\u62d2\u5426\u3055\u308c\u308b\u3060\u308d\u3046\u3002<\/p>\n<p>\u305d\u3082\u305d\u3082\u3053\u306e\u624b\u306e\u30c1\u30a7\u30c3\u30af\u306b\u610f\u5473\u304c\u3042\u308b\u3093\u3060\u308d\u3046\u304b\u3002eval \u3084 innerHTML \u81ea\u8eab\u304c\u60aa\u3068\u3044\u3046\u308f\u3051\u3067\u306f\u306a\u3044\u306e\u3060\u3002\u4f7f\u3044\u65b9\u306e\u554f\u984c\u306a\u306e\u3060\u3002AMO \u306e\u624b\u3067\u7f72\u540d\u3092\u4ed8\u3051\u3066\u305d\u306e\u62e1\u5f35\u306e\u751f\u6bba\u4e0e\u596a\u6a29\u3092\u63e1\u3063\u3066\u3044\u308b\u308f\u3051\u306a\u306e\u3060\u304b\u3089\u3001\u30a4\u30b1\u306a\u3044\u62e1\u5f35\u304c\u30a4\u30b1\u306a\u3044\u4f7f\u3044\u65b9\u3092\u3057\u3066\u3044\u308b\u306a\u3042\u3068\u5224\u660e\u3057\u305f\u6642\u70b9\u3067\u30ed\u30c3\u30af\u30c0\u30a6\u30f3\u3059\u308c\u3070\u3044\u3044\u3093\u3058\u3083\u306a\u304b\u308d\u3046\u304b\u3002<\/p>\n<p>Opera \u304b\u3089\u79fb\u884c\u3057\u3066\u4ee5\u6765\u3001\u52aa\u3081\u3066\u611b\u305d\u3046\u3068\u3057\u3066\u3044\u308b\u3051\u308c\u3069\u3001\u6b8b\u5ff5\u306a\u304c\u3089 Mozilla \u306b\u3082\u305d\u306e\u88fd\u54c1\u306b\u3082\u3001\u672c\u5f53\u306b\u304c\u3063\u304b\u308a\u3055\u305b\u3089\u308c\u308b\u3053\u3068\u304c\u591a\u3044\u3002<\/p>\n<div class=\"856f7bdf6ce2541193600c6e03dd1a56\" data-index=\"1\" style=\"float: left; margin: 16px 16px 16px 0;\">\n<script type=\"text\/javascript\"><!--\r\ngoogle_ad_client = \"ca-pub-5825700137064158\";\r\n\/* 250sq, appsweets-blog *\/\r\ngoogle_ad_slot = \"4837931762\";\r\ngoogle_ad_width = 250;\r\ngoogle_ad_height = 250;\r\n\/\/-->\r\n<\/script>\r\n<script type=\"text\/javascript\"\r\nsrc=\"http:\/\/pagead2.googlesyndication.com\/pagead\/show_ads.js\">\r\n<\/script>\n<\/div>\n\n<div style=\"font-size: 0px; height: 0px; line-height: 0px; margin: 0; padding: 0; clear: both;\"><\/div>","protected":false},"excerpt":{"rendered":"<p>\u8d64\u798f\u30d7\u30e9\u30b9\u3092 Unlisted \u306a\u62e1\u5f35\u3068\u3057\u3066 AMO \u306b\u63d0\u51fa\u3057\u3001\u7f72\u540d\u3092\u4ed8\u3051\u3066\u3082\u3089\u3063\u305f\u3002 \u3053\u306e\u969b\u3001\u6a5f\u68b0\u7684\u306a validator \u304c\u8d70\u308a\u3001\u30bd\u30fc\u30b9\u304c\u691c\u8a3c\u3055\u308c\u308b\u3002\u3053\u306e\u691c\u8a3c\u306b\u5f15\u3063\u304b\u304b\u3063\u305f\u5834\u5408\u5373\u6642\u7f72\u540d\u306f\u3055\u308c\u306a\u3044\u304c\u3001AMO \u306e\u4e2d\u306e\u4eba\u306b\u3088\u308b\u30ec\u30d3\u30e5\u30fc\u3092\u7533\u8acb\u3059\u308b\u3053\u3068\u306f\u3067\u304d\u308b\u3002\u4e00\u65b9\u3001\u691c\u8a3c\u306b\u3059\u3079\u3066\u901a\u308c\u3070\u5373\u6642\u7f72\u540d\u304c\u65bd\u3055\u308c\u308b\u3002\u3044\u305a\u308c\u306b\u3057\u3066\u3082\u7f72\u540d\u3055\u308c\u305f xpi \u306f AMO \u306e\u81ea\u5206\u306e\u30a2\u30ab\u30a6\u30f3\u30c8\u5185\u306b\u4fdd\u5b58\u3055\u308c\u308b\u306e\u3067\u305d\u308c\u3092\u30c0\u30a6\u30f3\u30ed\u30fc\u30c9\u3057\u3066\u5225\u306e\u5834\u6240\u3067\u516c\u958b\u3059\u308c\u3070\u3044\u3044\u3002 \u8d64\u798f\u30d7\u30e9\u30b9\u304c\u3053\u306e\u691c\u8a3c\u306b\u3059\u3079\u3066\u901a\u3063\u305f\u308f\u3051\u3060\u304c\u3001\u524d\u306b\u66f8\u3044\u305f\u901a\u308a\u691c\u8a3c\u3092\u884c\u3046 validator \u306f\u672c\u5f53\u306b\u3072\u3069\u3044\u51fa\u6765\u306a\u306e\u3060\u3063\u305f\u3002\u3072\u3069\u3044\u51fa\u6765\u3060\u3057\u3001\u610f\u5473\u306e\u306a\u3044\u8a2d\u8a08\u65b9\u91dd\u306b\u57fa\u3065\u3044\u3066\u4f5c\u3089\u308c\u3066\u3044\u308b\u3002 \u305f\u3068\u3048\u3070 validator \u306f eval \u3084\u3001Function \u3084\u3001innerHTML \u3084\u3001insertAdjacentHTML \u3084\u3001\u5f15\u6570\u304c\u30ea\u30c6\u30e9\u30eb\u3067\u306f\u306a\u3044 createElement \u304c\u3042\u308b\u3068\u5373\u6642\u7f72\u540d\u3092\u62d2\u5426\u3059\u308b\u3002\u305d\u3093\u306a\u308f\u3051\u3067 const FUN = &#8221;; var fun = some_decrypt_function(FUN); var f = window[fun](&#8216;alert(&#8220;wow!&#8221;);&#8217;); \u306e\u3088\u3046\u306a\u611f\u3058\u3067\u3068\u306b\u304b\u304f\u30bd\u30fc\u30b9\u304b\u3089\u30a4\u30b1\u306a\u3044\u30e1\u30bd\u30c3\u30c9\u3084\u30d7\u30ed\u30d1\u30c6\u30a3\u540d\u3092\u96a0\u3059\u3002\u3059\u308b\u3068\u3001validator \u306f\u3053\u308d\u3063\u3068\u9a19\u3055\u308c\u308b\u3002 &hellip; <a href=\"http:\/\/appsweets.net\/blog\/2015\/08\/17\/signing-akahukuplus\/\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[10,7],"class_list":["post-1708","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-akahukuplus","tag-firefox"],"_links":{"self":[{"href":"http:\/\/appsweets.net\/blog\/wp-json\/wp\/v2\/posts\/1708","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/appsweets.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/appsweets.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/appsweets.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/appsweets.net\/blog\/wp-json\/wp\/v2\/comments?post=1708"}],"version-history":[{"count":2,"href":"http:\/\/appsweets.net\/blog\/wp-json\/wp\/v2\/posts\/1708\/revisions"}],"predecessor-version":[{"id":1877,"href":"http:\/\/appsweets.net\/blog\/wp-json\/wp\/v2\/posts\/1708\/revisions\/1877"}],"wp:attachment":[{"href":"http:\/\/appsweets.net\/blog\/wp-json\/wp\/v2\/media?parent=1708"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/appsweets.net\/blog\/wp-json\/wp\/v2\/categories?post=1708"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/appsweets.net\/blog\/wp-json\/wp\/v2\/tags?post=1708"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}