{"id":4649,"date":"2018-10-18T04:11:52","date_gmt":"2018-10-17T19:11:52","guid":{"rendered":"https:\/\/hack.gpl.jp\/?p=4649"},"modified":"2018-10-18T04:11:52","modified_gmt":"2018-10-17T19:11:52","slug":"post-4649","status":"publish","type":"post","link":"https:\/\/hack.gpl.jp\/2018\/10\/18\/post-4649.html","title":{"rendered":"WordPress.com \u3067\u30c9\u30e1\u30a4\u30f3\u30de\u30c3\u30d4\u30f3\u30b0\u3057\u3066\u30b5\u30d6\u30c9\u30e1\u30a4\u30f3\u306e\u72ec\u81ea\u30c9\u30e1\u30a4\u30f3\u3092\u5229\u7528"},"content":{"rendered":"
\u3055\u3066\u3001\u524d\u56de WordPress.com \u306e\u4e00\u756a\u4e0b\u306e\u6709\u6599\u30d7\u30e9\u30f3\u300c\u30d1\u30fc\u30bd\u30ca\u30eb\u300d\u3068\u3044\u3046\u6708\u984d400\u5186\uff08\u652f\u6255\u3044\u306f\u5e74\u9593\u4e00\u62ec4800\u5186\u7a0e\u8fbc\uff09\u3092\u958b\u59cb\u3057\u307e\u3057\u305f\u3002<\/p>\n
\u72ec\u81ea\u30c9\u30e1\u30a4\u30f3\u306f\u3001GPL.JP \u3068\u3044\u3046\u30c9\u30e1\u30a4\u30f3\u3067\u3053\u308c\u306e\u30b5\u30d6\u30c9\u30e1\u30a4\u30f3\u90e8\u5206\u306b\u3001junkhack \u3092\u3064\u3051\u305f\u5f62\u3067\u3059\u3002<\/p>\n
\u3067\u3001\u4f7f\u3048\u308b\u3088\u3046\u306b\u3059\u308b\u306b\u306f\u3069\u3046\u3057\u305f\u3089\u3044\u3044\u304b\u3063\u3066\u3053\u3068\u3092\u7c21\u5358\u306b\u7d39\u4ecb\u3057\u307e\u3059\u3002<\/p>\n
\u30aa\u30d5\u30a3\u30b7\u30e3\u30eb\u306e\u65e5\u672c\u8a9e\u30b5\u30dd\u30fc\u30c8\u306b\u3082\u60c5\u5831\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n
https:\/\/ja.support.wordpress.com\/domains\/<\/a><\/p>\n <\/p>\n \u307e\u305a\u3001\u524d\u63d0\u6761\u4ef6\u3068\u3057\u3066\u306f\u4ee5\u4e0b\u3067\u3059\u3002<\/p>\n \u30fb\u30c9\u30e1\u30a4\u30f3\u767b\u9332\u306f\u4ed6\u306e\u4f1a\u793e\uff08\u304a\u540d\u524d\u30b3\u30e0\u3068\u304b\u30e0\u30fc\u30e0\u30fc\u30c9\u30e1\u30a4\u30f3\u306a\u3069\u306a\u3069\uff09<\/p>\n \u30fb\u30b5\u30d6\u30c9\u30e1\u30a4\u30f3\u3092\u5272\u308a\u5f53\u3066\uff08abc.example.jp \u306e abc \u90e8\u5206\u3092\u30b5\u30d6\u30c9\u30e1\u30a4\u30f3\u3068\u3044\u3044\u307e\u3059\uff09<\/p>\n <\/p>\n \u4eca\u56de\u306e\u30c9\u30e1\u30a4\u30f3\u306f\u3001\u4ed6\u306e\u4f1a\u793e\u3067\u7ba1\u7406\u3057\u3066\u3044\u307e\u3059\u3002\u3044\u308f\u3086\u308b\u30ec\u30b8\u30b9\u30c8\u30e9\u3068\u3044\u3046\u306e\u306f\u30d0\u30ea\u30e5\u30fc\u30c9\u30e1\u30a4\u30f3\u3067\u3001\u4eca\u306fGMO\u8cc7\u672c\u306b\u306a\u3063\u3066\u30d6\u30e9\u30f3\u30c9\u540d\u3060\u3051\u4f7f\u308f\u308c\u3066\u3044\u307e\u3059\u3002<\/p>\n \u30ec\u30b8\u30b9\u30c8\u30e9\u306f\u3001\u7121\u6599\u306eDNS\u3092\u3060\u3044\u305f\u3044\u904b\u55b6\u3057\u3066\u3044\u307e\u3059\u306e\u3067\u305d\u306e\u8a2d\u5b9a\u304cWEB\u4e0a\u3067\u884c\u3048\u308b\u30b3\u30f3\u30c8\u30ed\u30fc\u30eb\u30d1\u30cd\u30eb\u304c\u5b58\u5728\u3059\u308b\u3068\u3053\u308d\u3092\u304a\u52e7\u3081\u3057\u307e\u3059\u3002\u6614\u306fDNS\u3082\u81ea\u524d\u3067\u904b\u55b6\u3057\u3066\u3044\u307e\u3057\u305f\u304c\u3042\u307e\u308a\u610f\u5473\u304c\u306a\u3044\u306e\u3067\u4eca\u306f\u5927\u624b\u306e\u30ec\u30b8\u30b9\u30c8\u30e9\u306eDNS\u3092\u4f7f\u3063\u3066\u3044\u308b\u611f\u3058\u3067\u3059\u3002<\/p>\n <\/p>\n \u30b5\u30d6\u30c9\u30e1\u30a4\u30f3\u3092\u3053\u306e\u30d6\u30ed\u30b0\u306b\u5272\u308a\u5f53\u3066\u308b\u3088\u3046\u3001\u304a\u540d\u524d\u30b3\u30e0\u3068\u304b\u30e0\u30fc\u30e0\u30fc\u30c9\u30e1\u30a4\u30f3\u3068\u304b\u81ea\u5206\u304c\u53d6\u5f97\u3057\u305f\u30ec\u30b8\u30b9\u30c8\u30e9\u306b\u30b3\u30f3\u30d1\u30cd\u304c\u3042\u308b\u5834\u5408\u3001\u305d\u3053\u3067\u8a2d\u5b9a\u3092\u3057\u307e\u3059\u3002<\/p>\n \u30d0\u30ea\u30e5\u30fc\u30c9\u30e1\u30a4\u30f3\u306e\u5834\u5408\u306f\u3001\u30c6\u30ad\u30b9\u30c8\u30dc\u30c3\u30af\u30b9\u5185\u306b\u4ee5\u4e0b\u3092\u8a18\u8f09\u3059\u308b\u611f\u3058\u3002\uff08\u3053\u306e\u7c21\u6613\u7684\u306a\u30b9\u30bf\u30a4\u30eb\u304c\u597d\u304d\u3067\u3059\u3002\u3044\u3061\u3044\u3061\u3001\u500b\u5225\u306b\u30c6\u30ad\u30b9\u30c8\u5165\u529b\u3057\u306a\u304f\u3066\u4e00\u62ec\u3067\u5f35\u308a\u4ed8\u3051\u3089\u308c\u308b\uff09<\/p>\n ns junkhack ns1.wordpress.com. TTL \u306e\u6642\u9593\u306f\u30ad\u30e3\u30c3\u30b7\u30e5\u3055\u308c\u307e\u3059\u306e\u3067\u3057\u3070\u3089\u304f\u3001\u53cd\u6620\u3055\u308c\u308b\u307e\u3067\u5f85\u3061\u307e\u3057\u3087\u3046\u3002<\/p>\n <\/p>\n \u30c9\u30e1\u30a4\u30f3\u3092\u30de\u30c3\u30d4\u30f3\u30b0\u3057\u3066\u3082\u3001\u4e3b\u8981\u30c9\u30e1\u30a4\u30f3\u3092\u30de\u30c3\u30d4\u30f3\u30b0\u3057\u305f\u30c9\u30e1\u30a4\u30f3\u306b\u8a2d\u5b9a\u3057\u306a\u3044\u3068\u30ea\u30c0\u30a4\u30ec\u30af\u30c8\u3055\u308c\u307e\u305b\u3093\u3002<\/p>\n <\/p>\n \u4ee5\u4e0b\u306e\u3088\u3046\u306a\u72b6\u614b\u306b\u3059\u308b\u5fc5\u8981\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n <\/p>\n \u8a2d\u5b9a\u306f\u4ee5\u4e0a\u3067\u5b8c\u4e86\u3067\u3059\u3002<\/p>\n <\/p>\n \u3053\u308c\u3067\u3001\u30ea\u30c0\u30a4\u30ec\u30af\u30c8\u3055\u308c\u307e\u3059\u3002\u3055\u3089\u306b\u3001\u30ea\u30c0\u30a4\u30ec\u30af\u30c8\u3059\u308b\u3068\u304d\u306fHSTS \u3068\u3044\u3046\u898f\u683c\u3067SSL\u63a5\u7d9a\u3055\u308c\u307e\u3059\u3002\u3053\u308c\u306f\u60f3\u5b9a\u5916\u3060\u3063\u305f\u306e\u3067\u3001\u3061\u3087\u3063\u3068\u5f97\u3057\u305f\u611f\u3058\u3067\u3059\u3002<\/p>\n \u3064\u307e\u308a\u7c21\u5358\u306b\u3044\u3048\u3070\u5e38\u6642SSL\u63a5\u7d9a\u3055\u308c\u3066\u6697\u53f7\u5316\u901a\u4fe1\u3055\u308c\u3066\u3044\u307e\u3059\u3002\u81ea\u5206\u306e\u30c9\u30e1\u30a4\u30f3\u306fSSL\u8a3c\u660e\u66f8\u3068\u3063\u305f\u308f\u3051\u3058\u3083\u306a\u3044\u306e\u306b\u4e0d\u601d\u8b70\u3067\u3059\u306d\u3002<\/p>\n <\/p>\n <\/p>\n \u8a3c\u660e\u66f8\u306e\u8a73\u7d30\u306f\u4ee5\u4e0b\u306e\u3088\u3046\u306b\u51fa\u3066\u3044\u307e\u3059\u3002<\/p>\n <\/p>\n <\/p>\n \u8a8d\u8a3c\u3057\u305f\u3068\u3053\u308d\u306f\u3001Let\u2019s Encrypt \u3068\u3044\u3046CA\u306e\u3088\u3046\u3067\u3059\u3002<\/p>\n 128bit \u306e\u9375\u9577\u3067\u3001TLS1.2 \u306e\u3088\u3046\u3067\u3059\u3002\u3061\u306a\u307f\u306b\u3001\u3053\u306e\u9375\u306f\u30012\u306e128\u4e57\u300110\u9032\u6cd5\u3067\u306f39\u6841\u306e\u6570\u5024<\/p>\n \u3068\u3044\u3046\u5341\u5206\u306a\u3082\u306e\u3067\u3059\u3002IPv6\u30a2\u30c9\u30ec\u30b9\u306e\u6570\u3068\u540c\u3058\u3067\u3059\u306d\u3002<\/p>\n CN\u306e\u30c9\u30e1\u30a4\u30f3\u306f\u3001tls.automattic.com \u306e\u3088\u3046\u3067\u3059\u306d\u3002\u3053\u306e\u8aac\u660e\u306f\u4ee5\u4e0b\u306b\u3042\u308a\u307e\u3059\u3002<\/p>\n https:\/\/en.support.wordpress.com\/https-ssl\/<\/a><\/p>\n <\/p>\n \u4ed6\u306e\u30c9\u30e1\u30a4\u30f3\u306e\u8a3c\u660e\u66f8\u306a\u306e\u306b\u3001\u30d6\u30e9\u30a6\u30b6\u3067\u5b89\u5168\u306a\u63a5\u7d9a\u3068\u306a\u308b\u306e\u306f\u3001HTTPS\u30ec\u30b9\u30dd\u30f3\u30b9\u3067Strict-Transport-Security\uff08HSTS\uff09\u30d8\u30c3\u30c0\u30fc\u3092\u9001\u4fe1\u3057\u3066\u30d6\u30e9\u30a6\u30b6\u304c\u8a8d\u8b58\u3059\u308b\u3068\u3046\u5185\u5bb9\u306e\u3088\u3046\u3067\u3059\u304c\u3001\u8a73\u7d30\u306f\u3088\u304f\u7406\u89e3\u3067\u304d\u3066\u3044\u307e\u305b\u3093\u3002\u3082\u3046\u5c11\u3057\u3001\u30b3\u30de\u30f3\u30c9\u30e9\u30a4\u30f3\u306e\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u3067\u8a73\u7d30\u3092\u898b\u5b66\u3057\u3066\u307f\u307e\u3059\u3002<\/p>\n wget \u3067\u898b\u3066\u307f\u308b\u3068\u4ee5\u4e0b\u306e\u3088\u3046\u306b\u306a\u308a\u307e\u3059\u3002<\/p>\n $ wget -S –spider hack.gpl.jp \u307e\u305a\u521d\u56de\u30a2\u30af\u30bb\u30b9\u306f\u3001http \u30a2\u30af\u30bb\u30b9\u3067\u3001hack.gpl.jp \u3078\u30a2\u30af\u30bb\u30b9\u3057\u307e\u3059\u3002\u540d\u524d\u89e3\u6c7a\u3057\u3001192.0.78.25, 192.0.78.24\u306e\u3044\u305a\u308c\u304b\u306b\u63a5\u7d9a\u3002\u3053\u306e\u6642\u306f\u3001192.0.78.25\u306b\u63a5\u7d9a\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n \u63a5\u7d9a\u3057\u305f\u306e\u306f\u3001nginx \u306eWEB\u30b5\u30fc\u30d0\u306e\u3088\u3046\u3067\u3059\u3002301\u306f\u6052\u4e45\u7684\u306a\u30ea\u30c0\u30a4\u30ec\u30af\u30c8\u3067\u3001\u305d\u306e\u63a5\u7d9a\u5148\u306f\u3001https:\/\/hack.gpl.jp\/<\/a> \u3067\u3059\u3002<\/p>\n SSL\u63a5\u7d9a\u3057\u305f\u3068\u304d\u306f\u3001Strict-Transport-Security: max-age=86400\u3000\u3068\u3044\u3046\u30d8\u30c3\u30c0\u30fc\u304c\u3064\u3044\u3066\u3044\u307e\u3059\u306d\u30021\u65e5\uff0886400\u79d2\uff09\u306f\u3001https \u3067SSL\u63a5\u7d9a\u3059\u308b\u3068\u3044\u3046\u30d6\u30e9\u30a6\u30b6\u306e\u6319\u52d5\uff08\u5b9f\u88c5\u306b\u3088\u308b\uff09\u3068\u306a\u308b\u3088\u3046\u3067\u3059\u3002<\/p>\n X-hacker\u30d8\u30c3\u30c0\u30fc\u304c\u3064\u3044\u3066\u3044\u308b\u306e\u304c\u7b11\u3048\u307e\u3059\u3002<\/p>\n X-hacker: If you’re reading this, you should visit automattic.com\/jobs and apply to join the fun, mention this header.<\/p>\n \u30a2\u30af\u30bb\u30b9\u3059\u308b\u3068\u3001\u4ee5\u4e0b\u306b\u30ea\u30c0\u30a4\u30ec\u30af\u30c8<\/p>\n https:\/\/automattic.com\/work-with-us\/<\/a><\/p>\n \u3053\u306e\u4e2d\u306e\u3001happiness engineers\u3063\u3066\u306e\u306b\u8208\u5473\u3092\u899a\u3048\u307e\u3057\u305f\u3002<\/p>\n \u3053\u306e\u4eba\u305f\u3061\u306f\u3001\u4ee5\u4e0b\u306e\u3088\u3046\u306a\u4ed5\u4e8b\u74b0\u5883\u306e\u3088\u3046\u3067\u3059\u3002<\/p>\n https:\/\/artiss.blog\/2017\/06\/a-day-in-the-life-of-a-vip-wrangler\/<\/a><\/p>\n \u697d\u3057\u305d\u3046\u3002P2\u30d6\u30ed\u30b0<\/a>\u3068\u304b\u4f7f\u3063\u3066\u3044\u308b\u3088\u3046\u3067\u3059\u3002P2 \u3063\u3066\u30d6\u30ed\u30b0\u306e\u30c6\u30fc\u30de\u306a\u3093\u3067\u3059\u304c\u3001\u3053\u308c\u304c\u30b3\u30df\u30e5\u30cb\u30b1\u30fc\u30b7\u30e7\u30f3\u30c4\u30fc\u30eb\u306b\u306a\u3063\u3066\u3044\u308b\u3088\u3046\u3067\u3059\u3002<\/p>\n <\/p>\n \u3067\u3001\u9055\u3046\u30b3\u30de\u30f3\u30c9\u30e9\u30a4\u30f3\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u3092\u4f7f\u3063\u3066\u78ba\u8a8d\u3002<\/p>\n \u307e\u305a\u3001curl \u3067\u306f\u3001\u4f55\u3082\u30aa\u30d7\u30b7\u30e7\u30f3\u3092\u3064\u3051\u306a\u3044\u3068\u898b\u308c\u307e\u305b\u3093\u3002<\/p>\n $ curl -V $ curl hack.gpl.jp tls1.2 \u3067\u901a\u4fe1\u3059\u308b\u3068\u898b\u3048\u307e\u3059\u3002<\/p>\n $ curl -v –tlsv1.2 https:\/\/hack.gpl.jp\/<\/a> ::\uff08\u7565\uff09<\/p><\/blockquote>\n openssl \u306e s_client \u3092\u4f7f\u3063\u3066\u307f\u307e\u3059\u3002<\/p>\n $ openssl s_client -connect hack.gpl.jp:443 \u8a3c\u660e\u66f8\u306f\u3001Wildcard\/CN=*.wordpress.com\u3000\u3068\u3044\u3046\u3053\u3068\u306e\u3088\u3046\u3067\u3059\u306d\u3002\u3053\u308c\u3092nginx \u306b\u8a2d\u5b9a\u3057\u3066\u3001\u30c9\u30e1\u30a4\u30f3\u30de\u30c3\u30d4\u30f3\u30b0\u3057\u305f\u30c9\u30e1\u30a4\u30f3\u306fHSTS\u5b9a\u7fa9\u3055\u308c\u305fnginx \u30db\u30b9\u30c8\u306b\u6e21\u3057\u3066\u3044\u308b\u3088\u3046\u3067\u3059\u3002<\/p>\n \u5f93\u6765\u306e\u30c9\u30e1\u30a4\u30f3\u3067\u30a2\u30af\u30bb\u30b9\u3059\u308b\u30b5\u30fc\u30d0\uff08\u30ed\u30fc\u30c9\u30d0\u30e9\u30f3\u30b5\u30fc\uff09\u3068\u3001\u30c9\u30e1\u30a4\u30f3\u304b\u3089\u30a2\u30af\u30bb\u30b9\u3059\u308b\u30b5\u30fc\u30d0\u3068\u306fIP\u304c\u9055\u3044\u307e\u3059\u3002<\/p>\n \u307e\u305a\u3001\u5f93\u6765\u306e\u30c9\u30e1\u30a4\u30f3\u3002<\/p>\n $ dig hack.gpl.jp<\/p>\n ::<\/p>\n ;; ANSWER SECTION: ::<\/p><\/blockquote>\n \u30c9\u30e1\u30a4\u30f3\u30de\u30c3\u30d4\u30f3\u30b0\u3055\u308c\u305f\u3082\u306e<\/p>\n $ dig hack.gpl.jp<\/p>\n ::<\/p>\n ;; ANSWER SECTION: ::<\/p><\/blockquote>\n \u5185\u90e8\u69cb\u6210\u306f\u308f\u304b\u308a\u307e\u305b\u3093\u304c\u3001\u30d1\u30fc\u30bd\u30ca\u30eb\u30d7\u30e9\u30f3\u306f\u3001\u4fdd\u5b58\u30b9\u30da\u30fc\u30b9\u304c3GB\u304b\u30896GB\u306b\u306a\u3063\u3066\u3044\u3066\u5e83\u544a\u304c\u306a\u304f\u306a\u3063\u3066\u3044\u307e\u3059\u3002<\/p>\n \u30ea\u30d0\u30fc\u30b9\u30d7\u30ed\u30ad\u30b7\u30fc\u307f\u305f\u3044\u306b\u4f7f\u3063\u3066\u3044\u308b\u306e\u304b\u3082\u3057\u308c\u307e\u305b\u3093\u3002\u307e\u3001400\u5186\u3067\u3053\u306e\u69cb\u6210\u306b\u306a\u308b\u306a\u3089\u304a\u5f97\u611f\u306f\u3042\u308a\u307e\u3059\u3002\u4e00\u822c\u7684\u306a\u30ec\u30f3\u30bf\u30eb\u30b5\u30fc\u30d0\u3088\u308a\u78ba\u5b9f\u306b\u53ef\u7528\u6027\u306f\u3042\u308a\u307e\u3059\u3057\u3001\u307e\u305f\u81ea\u524d\u3067\uff11\u53f0\u69cb\u6210\u3088\u308a\u305c\u3093\u305c\u3093\u5b89\u5fc3\u611f\u304c\u9055\u3044\u307e\u3059\u3002<\/p>\n <\/p>\n WordPress \u306a\u3089\u3067\u306f\u306e\u30ab\u30b9\u30bf\u30de\u30a4\u30ba\u306f\u307e\u3060\u3067\u304d\u307e\u305b\u3093\u304c\u3001\u6708\u984d2900\u5186\u306e\u30d3\u30b8\u30cd\u30b9\u30d7\u30e9\u30f3\u307e\u3067\u30a2\u30c3\u30d7\u30b0\u30ec\u30fc\u30c9\u3059\u308b\u4fa1\u5024\u304c\u3042\u308b\u304b\u3001\u968f\u6642\u8a66\u3057\u3066\u307f\u305f\u3044\u306a\u3068\u601d\u3044\u307e\u3059\u3002\u30c1\u30e3\u30c3\u30c8\u3067\u78ba\u8a8d\u3057\u307e\u3057\u305f\u304c\u3001\u3069\u3046\u3084\u3089\u30aa\u30d5\u30a3\u30b7\u30e3\u30eb\u306e\u30d7\u30e9\u30b0\u30a4\u30f3\u30b5\u30a4\u30c8\u306b\u306a\u3044\u3082\u306e\u3082\u3001zip \u5727\u7e2e\u3057\u305f\u958b\u767a\u3057\u305f\u30d7\u30e9\u30b0\u30a4\u30f3\u3092\u30a2\u30c3\u30d7\u30ed\u30fc\u30c9\u3057\u3066\u4f7f\u3048\u308b\u3068\u3044\u3046\u3053\u3068\u3067\u3059\u3002<\/p>\n \u3053\u308c\u306f\u3044\u3044\u3067\u3059\u306d\u3002<\/p>\n","protected":false},"excerpt":{"rendered":" \u3055\u3066\u3001\u524d\u56de WordPress.com \u306e\u4e00\u756a\u4e0b\u306e\u6709\u6599\u30d7\u30e9\u30f3\u300c\u30d1\u30fc\u30bd\u30ca\u30eb\u300d\u3068\u3044\u3046\u6708\u984d400\u5186\uff08\u652f\u6255\u3044\u306f\u5e74\u9593\u4e00\u62ec4800\u5186\u7a0e\u8fbc\uff09\u3092\u958b\u59cb\u3057\u307e\u3057\u305f\u3002 \u72ec\u81ea\u30c9\u30e1\u30a4\u30f3\u306f\u3001GPL.JP \u3068\u3044\u3046\u30c9\u30e1\u30a4\u30f3\u3067\u3053\u308c\u306e\u30b5\u30d6\u30c9\u30e1\u30a4\u30f3\u90e8\u5206\u306b\u3001ju […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_uag_custom_page_level_css":"","footnotes":""},"categories":[83,84],"tags":[],"acf":[],"uagb_featured_image_src":{"full":false,"thumbnail":false,"medium":false,"medium_large":false,"large":false,"1536x1536":false,"2048x2048":false,"post-thumbnail":false},"uagb_author_info":{"display_name":"JunkHack","author_link":"https:\/\/hack.gpl.jp\/author\/junkhack\/"},"uagb_comment_info":0,"uagb_excerpt":"\u3055\u3066\u3001\u524d\u56de WordPress.com \u306e\u4e00\u756a\u4e0b\u306e\u6709\u6599\u30d7\u30e9\u30f3\u300c\u30d1\u30fc\u30bd\u30ca\u30eb\u300d\u3068\u3044\u3046\u6708\u984d400\u5186\uff08\u652f\u6255\u3044\u306f\u5e74\u9593\u4e00\u62ec…","_links":{"self":[{"href":"https:\/\/hack.gpl.jp\/wp-json\/wp\/v2\/posts\/4649"}],"collection":[{"href":"https:\/\/hack.gpl.jp\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/hack.gpl.jp\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/hack.gpl.jp\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/hack.gpl.jp\/wp-json\/wp\/v2\/comments?post=4649"}],"version-history":[{"count":0,"href":"https:\/\/hack.gpl.jp\/wp-json\/wp\/v2\/posts\/4649\/revisions"}],"wp:attachment":[{"href":"https:\/\/hack.gpl.jp\/wp-json\/wp\/v2\/media?parent=4649"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/hack.gpl.jp\/wp-json\/wp\/v2\/categories?post=4649"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/hack.gpl.jp\/wp-json\/wp\/v2\/tags?post=4649"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}\u76ee\u6b21<\/h3>\n
\u30ec\u30b8\u30b9\u30c8\u30e9\u3067DNS\u8a2d\u5b9a<\/h3>\n
\nns junkhack ns2.wordpress.com.
\nns junkhack ns3.wordpress.com.<\/p><\/blockquote>\nWordPress.com \u3067\u8a2d\u5b9a<\/h3>\n
340,282,366,920,938,463,463,374,607,431,768,211,456<\/h4>\n
\uff08\u203b\u5146\u3068\u304b\u4eac\u3068\u304b\u306e\u3082\u3063\u3068\u4e0a\u306e\u8aad\u307f\u65b9\u3067\u3059\uff09<\/h4>\n
\nSpider mode enabled. Check if remote file exists.
\n–2018-10-18 00:38:23–\u00a0 http:\/\/hack.gpl.jp\/<\/a>
\nResolving hack.gpl.jp… 192.0.78.25, 192.0.78.24
\nConnecting to hack.gpl.jp|192.0.78.25|:80<\/strong>… connected.
\nHTTP request sent, awaiting response…
\nHTTP\/1.1 301 Moved Permanently
\nServer: nginx
\nDate: Wed, 17 Oct 2018 15:38:23 GMT
\nContent-Type: text\/html
\nContent-Length: 178
\nConnection: keep-alive
\nLocation: https:\/\/hack.gpl.jp\/<\/a>
\nX-ac: 3.nrt _bur
\nLocation: https:\/\/hack.gpl.jp\/<\/a> [following]
\nSpider mode enabled. Check if remote file exists.
\n–2018-10-18 00:38:23–\u00a0 https:\/\/hack.gpl.jp\/<\/a>
\nConnecting to hack.gpl.jp|192.0.78.25|:443<\/strong>… connected.
\nHTTP request sent, awaiting response…
\nHTTP\/1.1 200 OK
\nServer: nginx
\nDate: Wed, 17 Oct 2018 15:38:23 GMT
\nContent-Type: text\/html; charset=UTF-8
\nConnection: keep-alive
\nStrict-Transport-Security: max-age=86400<\/span><\/strong>
\nVary: Accept-Encoding
\nVary: Cookie
\nX-hacker: If you’re reading this, you should visit automattic.com\/jobs and apply to join the fun, mention this header.
\nLink: <https:\/\/wp.me\/1kMA4<\/a>>; rel=shortlink
\nX-ac: 3.nrt _bur
\nLength: unspecified [text\/html]
\nRemote file exists and could contain further links,
\nbut recursion is disabled — not retrieving.<\/p><\/blockquote>\n
\ncurl 7.43.0 (x86_64-apple-darwin15.0) libcurl\/7.43.0 SecureTransport zlib\/1.2.5<\/p>\n
\n<html>
\n<head><title>301 Moved Permanently<\/title><\/head>
\n<body bgcolor=”white”>
\n<center><h1>301 Moved Permanently<\/h1><\/center>
\n<hr><center>nginx<\/center>
\n<\/body>
\n<\/html><\/p><\/blockquote>\n
\n*\u00a0\u00a0 Trying 192.0.78.24…
\n* Connected to hack.gpl.jp (192.0.78.24) port 443 (#0)
\n* TLS 1.2 connection using TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
\n* Server certificate: tls.automattic.com
\n* Server certificate: Let’s Encrypt Authority X3
\n* Server certificate: DST Root CA X3
\n> GET \/ HTTP\/1.1
\n> Host: hack.gpl.jp
\n> User-Agent: curl\/7.43.0
\n> Accept: *\/*
\n>
\n< HTTP\/1.1 200 OK
\n< Server: nginx
\n< Date: Wed, 17 Oct 2018 18:19:33 GMT
\n< Content-Type: text\/html; charset=UTF-8
\n< Transfer-Encoding: chunked
\n< Connection: keep-alive
\n< Strict-Transport-Security: max-age=86400
\n< Vary: Accept-Encoding
\n< Vary: Cookie
\n< X-hacker: If you’re reading this, you should visit automattic.com\/jobs and apply to join the fun, mention this header.
\n< Link: <https:\/\/wp.me\/1kMA4<\/a>>; rel=shortlink
\n< X-ac: 3.nrt _bur
\n<
\n<!DOCTYPE html><\/p><\/blockquote>\n
\nCONNECTED(00000003)
\ndepth=2 \/C=GB\/ST=Greater Manchester\/L=Salford\/O=COMODO CA Limited\/CN=COMODO RSA Certification Authority
\nverify error:num=20:unable to get local issuer certificate
\nverify return:0
\n—
\nCertificate chain
\n0 s:\/OU=Domain Control Validated\/OU=EssentialSSL Wildcard\/CN=*.wordpress.com
\ni:\/C=GB\/ST=Greater Manchester\/L=Salford\/O=COMODO CA Limited\/CN=COMODO RSA Domain Validation Secure Server CA
\n1 s:\/C=GB\/ST=Greater Manchester\/L=Salford\/O=COMODO CA Limited\/CN=COMODO RSA Domain Validation Secure Server CA
\ni:\/C=GB\/ST=Greater Manchester\/L=Salford\/O=COMODO CA Limited\/CN=COMODO RSA Certification Authority
\n2 s:\/C=GB\/ST=Greater Manchester\/L=Salford\/O=COMODO CA Limited\/CN=COMODO RSA Certification Authority
\ni:\/C=SE\/O=AddTrust AB\/OU=AddTrust External TTP Network\/CN=AddTrust External CA Root
\n—
\nServer certificate
\n—–BEGIN CERTIFICATE—–
\nMIIG2TCCBcGgAwIBAgIRAKeBC2S1KcGoaQC27YwaCGgwDQYJKoZIhvcNAQELBQAw
\ngZAxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO
\nBgNVBAcTB1NhbGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBDQSBMaW1pdGVkMTYwNAYD
\nVQQDEy1DT01PRE8gUlNBIERvbWFpbiBWYWxpZGF0aW9uIFNlY3VyZSBTZXJ2ZXIg
\nQ0EwHhcNMTgwOTA2MDAwMDAwWhcNMjAwOTA1MjM1OTU5WjBdMSEwHwYDVQQLExhE
\nb21haW4gQ29udHJvbCBWYWxpZGF0ZWQxHjAcBgNVBAsTFUVzc2VudGlhbFNTTCBX
\naWxkY2FyZDEYMBYGA1UEAwwPKi53b3JkcHJlc3MuY29tMIIBIjANBgkqhkiG9w0B
\nAQEFAAOCAQ8AMIIBCgKCAQEAtX8qlG2EEfbt976zryjdtGbx89fdxpoAUfwTmW6Y
\n8DY0LCvtejfR3w8kPEO6e3iRwyAmXoDBtA7cU06AsUP3e5cQyoWXcrW3ijsETOd9
\naBA58CeCsZJ47KfFxCU91Fijpv1VarlJblydVx1JouEj0HlGqAghLsrDehkQwczs
\nEwWtz5gOvenRGPIXVw1g\/Or\/QYv1fwcvOglhOgbKN2HpHnIPOp9RAFbYPWhDC7sc
\na4lK2o85siaoe7563fSd+FfsiQ6Ssh4fK2sMqXbWqoyKonem+6rCWdWPvVsIBDH2
\n8v2HZ6s74CQSeMuAy5CZJOwv8emqlByp9GtuGWECqOgLpwIDAQABo4IDXjCCA1ow
\nHwYDVR0jBBgwFoAUkK9qOpRaC9iQ6hJWc99DtDoo2ucwHQYDVR0OBBYEFA1qB7w5
\nrS0dqQtaLzRiiA9WS7X2MA4GA1UdDwEB\/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0G
\nA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBPBgNVHSAESDBGMDoGCysGAQQB
\nsjEBAgIHMCswKQYIKwYBBQUHAgEWHWh0dHBzOi8vc2VjdXJlLmNvbW9kby5jb20v
\nQ1BTMAgGBmeBDAECATBUBgNVHR8ETTBLMEmgR6BFhkNodHRwOi8vY3JsLmNvbW9k
\nb2NhLmNvbS9DT01PRE9SU0FEb21haW5WYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0Eu
\nY3JsMIGFBggrBgEFBQcBAQR5MHcwTwYIKwYBBQUHMAKGQ2h0dHA6Ly9jcnQuY29t
\nb2RvY2EuY29tL0NPTU9ET1JTQURvbWFpblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJD
\nQS5jcnQwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmNvbW9kb2NhLmNvbTApBgNV
\nHREEIjAggg8qLndvcmRwcmVzcy5jb22CDXdvcmRwcmVzcy5jb20wggF\/BgorBgEE
\nAdZ5AgQCBIIBbwSCAWsBaQB2AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDEe4l6
\nqP3LAAABZayjjkoAAAQDAEcwRQIhAKz7RLxwEe2RASIQxFmK0wa5cL+UkxNsca2L
\nrQY3cOjMAiARjKGfL3sPAj3NaiKaJceVxd2xKIqgVFiyn+nUNLziUQB3AF6nc\/nf
\nVsDntTZIfdBJ4DJ6kZoMhKESEoQYdZaBcUVYAAABZayjjocAAAQDAEgwRgIhAP6F
\ndPFHxFhI07FV6PGss0u34O3IKh7t5bdInq1yzfGHAiEA2CPZamK6a3DLTOPmdFfk
\nBVl51AekibMouaopWKH9cAwAdgBVgdTCFpA2AUrqC5tXPFPwwOQ4eHAlCBcvo6od
\nBxPTDAAAAWWso45sAAAEAwBHMEUCIQChMawM9D4XL9Rty9yIHVt5nSAWlnWO9mUa
\n5PukI4ogIQIgbbnceypgG1l21iW7p9PKMxG1aVILjVLPyM5bvEX1T\/8wDQYJKoZI
\nhvcNAQELBQADggEBAHs2PmSUv9MLxHibC\/FugGZkr9zOgkxEVVtQlNVUZkNPGeGx
\n017Vwhi37+mNHp8uyT6zTOtKw1YBEDlEKvGWH7L86hK57kP+BdpVkjiuRA7jtVZ\/
\nwVSzD8mUv3IT6YAN3Xe8ZRRm1wkrjgaF8tPVLDC3IAqgq7PRGKF6YMdYdC3VtO4J
\npfLhODzOmQEWgHTq\/6avc2AkvOCdtOEyJNayEFcGhWGKoSkEXKt3UF5+UPn2XFyO
\nhSmJErVCPQv6E8iwsAc1ugRZuEubiP0dp1RLiyLoPW8Pmzm2bidp55Tkm7zfqjjk
\nO4h2j0\/57jEg1LPNvtUTFgZr0ULj3tOxoSTmesc=
\n—–END CERTIFICATE—–
\nsubject=\/OU=Domain Control Validated\/OU=EssentialSSL Wildcard\/CN=*.wordpress.com
\nissuer=\/C=GB\/ST=Greater Manchester\/L=Salford\/O=COMODO CA Limited\/CN=COMODO RSA Domain Validation Secure Server CA
\n—
\nNo client certificate CA names sent
\n—
\nSSL handshake has read 4880 bytes and written 456 bytes
\n—
\nNew, TLSv1\/SSLv3, Cipher is AES128-SHA
\nServer public key is 2048 bit
\nSecure Renegotiation IS supported
\nCompression: NONE
\nExpansion: NONE
\nSSL-Session:
\nProtocol\u00a0 : TLSv1
\nCipher\u00a0\u00a0\u00a0 : AES128-SHA
\nSession-ID: 9E6C6DA392FA51DB27F9AD7538AADF5CC51120F9DA1C3227856758BCE95A315C
\nSession-ID-ctx:
\nMaster-Key: CCE0E882CEE0E74DF78679DE4829F00B20F39C84A6F538BFA52C8026F7F8438E6A62E848AA0A1DBB4284B2076875B53D
\nKey-Arg\u00a0\u00a0 : None
\nStart Time: 1539800715
\nTimeout\u00a0\u00a0 : 300 (sec)
\nVerify return code: 0 (ok)
\n—<\/p><\/blockquote>\n
\nhack.gpl.jp.\u00a0\u00a0\u00a0 14400\u00a0\u00a0\u00a0 IN\u00a0\u00a0\u00a0 CNAME\u00a0\u00a0\u00a0 lb.wordpress.com.
\nlb.wordpress.com.\u00a0\u00a0\u00a0 230\u00a0\u00a0\u00a0 IN\u00a0\u00a0\u00a0 A\u00a0\u00a0\u00a0 192.0.78.12
\nlb.wordpress.com.\u00a0\u00a0\u00a0 230\u00a0\u00a0\u00a0 IN\u00a0\u00a0\u00a0 A\u00a0\u00a0\u00a0 192.0.78.13<\/p>\n
\nhack.gpl.jp.\u00a0\u00a0\u00a0 184\u00a0\u00a0\u00a0 IN\u00a0\u00a0\u00a0 A\u00a0\u00a0\u00a0 192.0.78.25
\nhack.gpl.jp.\u00a0\u00a0\u00a0 184\u00a0\u00a0\u00a0 IN\u00a0\u00a0\u00a0 A\u00a0\u00a0\u00a0 192.0.78.24<\/p>\n