  |
はてなキーワード:passwordとは
「フロントエンド不要論」は、最近の開発現場やサーバーレス、クラウド技術の進化に関わっている人たちの間でリアルに実感されている問題です。
• React,Vue, Angular などのフレームワークがどんどん複雑化
•フロントエンドとバックエンドの分離が、**「本当に効率的か?」**という疑問が生じている
• 「最終的にHTMLを描画するだけなら、サーバーでやればよくない?」
•フロントエンドから直接APIを叩く構成では、「APIを守る」ことが難しい
•XSS,CSRF, CORSといった脆弱性に対処し続けるコストが無駄
🚩 3.サーバーレス・クラウド技術が進化し、APIの負担を減らす方向に
•AWSLambda,APIGateway, Cognitoなどのサーバーレス技術が進化
•フロントエンドがAPIを叩くより、サーバー側で直接処理する方が効率的
• 以前はReactを使用 → ReactをやめてHTMLベースに戻した
• React,Vue, Angularを全廃
•JavaScriptなしで動的なページを実現
3. Laravel(Livewire)
4. Shopify(GraphQLでデータを直接取得)
•フロントエンドを完全分離する構成から、「バックエンドがHTMLを返せばいい」 というシンプルな構成へ移行
✅サーバーレス時代の最適解:「フロントエンド不要アーキテクチャ」
「フロントエンドを捨てて、サーバーがすべての処理を担う」方向に移行するのが最適解になりつつある。
📌 最適なアーキテクチャ
ブラウザ →サーバー(PHP,Node.js,Go) →APIGateway(Cognito認証)
📌 具体的な実装例(PHP + Cognito +APIGateway)
require 'vendor/autoload.php';
useAws\CognitoIdentityProvider\CognitoIdentityProviderClient;
useAws\Exception\AwsException;
$client = new CognitoIdentityProviderClient([
'credentials' => [
'key' => getenv('AWS_ACCESS_KEY_ID'),
'secret' => getenv('AWS_SECRET_ACCESS_KEY'),
],
]);
$email = $_POST['email'];
$password = $_POST['password'];
try {
$result = $client->initiateAuth([
'AuthFlow' => 'USER_PASSWORD_AUTH',
'ClientId' => 'XXXXXXXXXX',
'USERNAME' => $email,
],
]);
setcookie("accessToken", $result['AuthenticationResult']['AccessToken'], [
'samesite' => 'Strict'
]);
header("Location:dashboard.php");
}
?>
🚀 **「フロントエンドはもう不要」**という流れは、最新のクラウド/サーバーレス開発に携わる人たちが実感していること。
☑セキュリティが大幅に向上する
👉結論:「フロントエンドは不要」クラウド×サーバーレスでバックエンドが主役になる!
こんます~
2023年も残すところわずかとなりましたが、皆様方におかれましてはいかがお過ごしでしょうか。
一年間の振り返りなどはされましたでしょうか。
2423件の日記を綴っており、
頂いた総ブクマ数は1893、総トラバ数は1060となりました。
本年も大変お世話になりました。
最期に、ポンコツの私がChatGPTの手となり足となり作成した増田集計コードを掲載します。
各日記のURL、タイトル、投稿日時、文字数、被ブクマ数、被トラバ数を取得しCSVファイルに出力するものです。
お暇な方はお使いください。
それではよいお年をお迎えください。
import requestsfrom bs4 import BeautifulSoupimporttimeimportcsvimportosimport re#ログインURLlogin_url = 'https://hatelabo.jp/login'#ログイン情報login_data = { 'key': 'あなたのユーザ名またはメールアドレス', 'password': 'あなたのパスワード', 'mode': 'enter'}user_name = 'あなたのユーザ名'#User-Agent ヘッダー(例:Google Chrome)headers = { 'User-Agent': 'Mozilla/5.0 (Windows NT10.0;Win64;x64) AppleWebKit/537.36 (KHTML,likeGecko)Chrome/58.0.3029.110Safari/537.3'}#セッションを開始session = requests.Session()#ログインresponse = session.post(login_url, data=login_data, headers=headers)print('login',response.status_code)# 集計データitem = { 'url': '', #URL 'title': '', #タイトル 'datetime': '', #投稿日時 'characters': '', #文字数 'bookmark': '', # 被ブクマ数 'trackback': '', # 被トラバ数}#CSVファイル名output_file = 'masuda_output.csv'#CSVファイルが存在しない場合はヘッダーを書き込むif notos.path.exists(output_file): withopen(output_file, 'w', newline='', encoding='utf-8')as file:writer =csv.DictWriter(file, fieldnames=item.keys())writer.writeheader()# 集計page_start = 1page_end = 3for i in range(page_start, page_end+1): # 待機time.sleep(3) #増田一覧取得 page = session.get(f'https://anond.hatelabo.jp/{user_name}/?page={i}')print(page.url) # 応答のHTMLをBeautifulSoupで解析 soup = BeautifulSoup(page.content, 'html.parser') entries = soup.find_all('div', class_='section') for entry in entries: header = entry.find('h3')timestamp = header.find('a').get('href')[1:] item['url'] = 'https://anond.hatelabo.jp/'+timestamp item['title'] = header.get_text()[:-1] item['datetime'] = f"{timestamp[0:4]}/{timestamp[4:6]}/{timestamp[6:8]} {timestamp[8:10]}:{timestamp[10:12]}" footersection_text = entry.find_all('p')[-2].get_text() item['characters'] =len(entry.find('p').get_text().strip(footersection_text)) item['trackback'] = int(re.search(r'\((.*?)\)', footersection_text).group(1) if re.search(r'\((.*?)\)', footersection_text) else '') if item['title'] == '■': item['title'] = entry.find('p').get_text().strip(footersection_text)[:35] # 待機time.sleep(3)bookmark_page = session.get(f'https://b.hatena.ne.jp/entry/button/?url=https%3A%2F%2Fanond.hatelabo.jp%2F{timestamp}&layout=basic-label-counter&lang=ja') soup_b = BeautifulSoup(bookmark_page.content, 'html.parser') item['bookmark'] = int(soup_b.find('a', class_='count').get_text()) #CSVファイルに追記 withopen(output_file, 'a', newline='', encoding='utf-8')as file:writer =csv.DictWriter(file, fieldnames=item.keys())writer.writerow(item)
(追記)
わー。ごめんなさい。文字が何か所か変わっていました。
\ → \
できたできた。自己解決。多分誰にも役に立たないだろうが書いておこう。
DB2はODBCの設定以外にNodeとDBの設定情報が必要らしい。それがなんなのかはわからない。
GUIのODBCデータソースで追加すると、これが裏で作ってくれるっぽいが
ODBCCONF.exeでは作ってくれず、エラーとなる。らしい。
"C:\Program Files\IBM\SQLLIB\BIN\db2cmd.exe" /c /wdb2 catalog tcpip node FOO remote 192.168.1.1 server 10000"C:\Program Files\IBM\SQLLIB\BIN\db2cmd.exe" /c /wdb2 catalogdb FOOat node FOOodbcconf /A {CONFIGSYSDSN "IBMDB2ODBC DRIVER -DB2COPY1" "DSN=FOO|DATABASE=FOO|SYSTEM=192.168.1.1:10000|UID=db2admin|PWD=password"}
で追加できる。知らんだけで最後はODBCCONFではなく、db2側のでDSNも追加できるのかもしれない…
さらに「 -DB2COPY1」が何なのかさっぱりわからん。「IBMDB2ODBC DRIVER」もあるんだけども。
というか、こういう要望無いんだろうか?探してもAIに聞いてもなかなかヒットせず
リファレンス見ながらだましだましやってやっとたどり着いた。
odbcconf /A {CONFIGSYSDSN "IBMDB2ODBC DRIVER -DB2COPY1" "DSN=FOO|DATABASE=FOO|SYSTEM=192.168.1.1:10000|UID=db2admin|PWD=password"}
だと「ドライバーの ConfigDSN、ConfigDriver、または ConfigTranslator が失敗しました」とあてにならないエラーが出てしまう。
iAccessは
odbcconf /A {CONFIGSYSDSN "iSeriesAccessODBC Driver" "DSN=BARLIB|DRIVER=IBM iAccessODBC Driver|SYSTEM=192.168.1.1|DefaultLibraries=BARLIB|CMT=3|SORTTYPE=2|LANGUAGEID=JPN"}
なんかちがうんかなぁ。。。
chatgptで
「sqlite3でtwitterみたいなサイトのテーブル設計をして。
上記のTwitterのようなサイトで特定のユーザーのタイムラインを表示するクエリの例を教えて」
って聞くと、こういうの表示されるけど、こんなの絶対パッと思いつかんやろ!!
特にJOIN2回使うのが全然分からん。なんならJOIN1回の部分も分からん
っていうか、hatena君、sqlのシンタックスハイライトするとインターナルサーバーエラー返してくるんだが...
classFoodefbar'baz'# return bazendend
sqlだけっぽい......
CREATETABLE users (id INTEGER PRIMARYKEY AUTOINCREMENT, usernameTEXT NOT NULL, emailTEXT NOT NULL UNIQUE,passwordTEXT NOT NULL, created_at DATETIMEDEFAULT CURRENT_TIMESTAMP);CREATETABLE tweets (id INTEGER PRIMARYKEY AUTOINCREMENT, user_id INTEGER NOT NULL,bodyTEXT NOT NULL, created_at DATETIMEDEFAULT CURRENT_TIMESTAMP, FOREIGNKEY (user_id) REFERENCES users (id));CREATETABLE follows ( follower_id INTEGER NOT NULL, followed_id INTEGER NOT NULL, created_at DATETIMEDEFAULT CURRENT_TIMESTAMP, PRIMARYKEY (follower_id, followed_id), FOREIGNKEY (follower_id) REFERENCES users (id), FOREIGNKEY (followed_id) REFERENCES users (id));SELECT tweets.id, tweets.body, tweets.created_at, users.usernameFROM tweetsJOIN followsON tweets.user_id = follows.followed_idJOIN usersON tweets.user_id = users.idWHERE follows.follower_id = [特定のユーザーID]ORDERBY tweets.created_at DESC;
自動で安価をつけて返信するプログラムでもこんなに長く複雑になる(一部抜粋)
/**************************************
以下のCSV_DIR, FILE_PATHS,SETTINGSを書き換えてね。 <h3>o- *************************************/</h3>
//CSVファイルが置かれてるディレクトリのパス。投稿前にエラー出たら大体ここの設定ミス。 例:"C:\\Users\\sakuraimasahiro\\Documents\\iMacros\\Macros\\rentou\\";
'C:\\Users\\USER\\Desktop\\iMacros\\Macros\\rentou\\';
//ファイルのパス。CSVは絶対パスで、拡張子も必要。iimは相対パスでよく、拡張子不要。
const FILE_PATHS = {
textCsv:CSV_DIR + 'textNoAnker.csv',
//レス用投稿文が書かれたCSV。通常とレス用で分けないなら同じファイルを使えばいい。
replyTextCsv:CSV_DIR + 'textReply.csv',
};
baseWaitTime: 5,
//baseWaitTime+0~waitTimeRange(ランダム)だけ待つ
waitTimeRange: 5,
//連投しすぎだと忠告された場合に処理を一時停止させる時間(秒)
waitTimeForAvoidingPunishment: 60 * 30,
//メール
mail: 'sage',
//名前設定
name: '',
//以下、偽装ワッチョイ設定。浪人でワッチョイを非表示にしてるときだけtrueにしてね。
//妙なニックネーム(ワッチョイ、アウアウウーなど)をランダムで決めて付加するかどうか。true=付加する。false=付加しない。
//妙なニックネームの後に付く8桁の文字列をランダムで決めて付加するかどうか。
},
//アンカー無し投稿をするならtrue。しないならfalse。noAnkerPostかreplyPostのどちらかはtrueにすること(両方trueでもOK)。
//アンカー付き投稿(返信)をするならtrue。しないならfalse。もしnoAnkerPostとreplyPostの両方がtrueの場合、投稿は返信が優先され、返信対象が見つからなくなったらアンカー無し投稿をする。
//最初に取得するアンカー無し投稿文CSVファイルの行番号。もし返信用と同じCSVファイルを使うなら-1と入力。
noAnkerPostTextCsvStartRow: 1,
//最初に取得する返信用投稿文CSVファイルの行番号。もしアンカー無しと同じCSVファイルを使うなら-1と入力。
//テキストCSV/返信用テキストCSVの取得行が最終行に達したら最初の行まで戻るかどうか。true=戻る。false=マクロ終了。
//返信する場合、これより小さなレス番には返信しない。返信を投稿すると、この数値は前回の返信先のレス番に更新される。
minAnker: 895,
//返信する場合、名前に以下の文字列を含む投稿にアンカーをつけて返信する(ワッチョイやIPなど名前フィールドにあるものならなんでも可)。配列で複数指定可能。指定無しなら空配列([])。filterNamesとfilterNamesNotIncluded共に無指定ならレス番1から順に返信していく(minAnkerが設定されてればそこから順に)。以下のfilter系は全て併用可能。
//↑とは逆に、名前に以下の文字列を含まない投稿にアンカーをつけて返信する。↑と併用も可能。
//返信する場合、本文に以下の文字列を含む投稿にアンカーをつけて返信する。
filterText: ['自演かな', '自演わらわら', 'スクリプト使うの', '安価ガバ', '>>660', '自演で擁護', '最後' ,'あいうえお', 'かきくけこ', 'さしすせそ', 'なにぬねの', 'はひふへほ', 'まみむめも', 'やいゆえよ', 'やゆよ', 'らりるれろ', 'わいうえを', 'わをん', 'わいうえをん'],
},
//自分のIPアドレスの確認。VPNとかでIPを変更してマクロを動かしてるとき、突然VPNが作動しなくなってIPが元に戻ったときにマクロを止めるためのもの。
//以下の文字列が自分の現在のIPアドレスに含まれている場合、マクロを一時停止する。基本的に自分の本当のIPアドレスを入力。
},
//浪人設定。最後に動作を確認したのは5年くらい前で、今も同じように動作するかは、浪人を持ってないから確認できずわからない。
//浪人にログインしてるかどうかをチェックするかどうか。trueならする。falseならしない。trueにしていてもし浪人にログインしていないことを確認したらログインしにいく。
password: '1234',
},
};
/**************************************
設定箇所終わり。
https://info.5ch.net/index.php/%E6%9B%B8%E3%81%8D%E8%BE%BC%E3%82%81%E3%81%AA%E3%81%84%E6%99%82%E3%81%AE%E6%97%A9%E8%A6%8B%E8%A1%A8 <h3>o- *************************************/</h3>
/**************************************
・NULL演算子(??)は使えない。論理積(&&)は使える。
・オブジェクトの分割代入はできない。
・importはできない。 <h3>o- *************************************/</h3>
/**************************************
関数 <h3>o- *************************************/</h3>
/**
* ここから始まる。
*/
checkSettings();
var _TextCsvCursors = newTextCsvCursors(
SETTINGS.postSettings.noAnkerPostTextCsvStartRow> 0
?SETTINGS.postSettings.noAnkerPostTextCsvStartRow - 1
:SETTINGS.postSettings.noAnkerPostTextCsvStartRow,
SETTINGS.postSettings.textCsvLoop,
),
SETTINGS.postSettings.replyPostTextCsvStartRow> 0
?SETTINGS.postSettings.replyPostTextCsvStartRow - 1
:SETTINGS.postSettings.replyPostTextCsvStartRow,
SETTINGS.postSettings.textCsvLoop,
),
);
var _LoopStatuses = newLoopStatuses(0,SETTINGS.postSettings.minAnker);
const _MyPosterName = new MyPosterName({
name:SETTINGS.nameSettings.name,
});
const _ThreadUrl = openPromptThreadUrl();
//ループ
while (true) {
SETTINGS.ipSettings.checkIp && checkCurrentIpNotTheIp();
//スレを開く
openUrl(_ThreadUrl.fullUrlHttps());
//浪人にログインする設定なら、浪人にログインしているかどうかを確認し、していなければログインしにいく。
if (SETTINGS.roninSettings.checkLogin) {
}
}
if (SETTINGS.postSettings.replyPost) {
const targetAnkerNumber = createPostDOMList()
.filterPostnumberHigher(_LoopStatuses.currentMinAnker())
.filterByPostername(SETTINGS.postSettings.filterNames)
.filterByPosternameNotIncluded(
SETTINGS.postSettings.filterNamesNotIncluded,
)
.filterByText(SETTINGS.postSettings.filterText)
if (targetAnkerNumber !== null) {
const r = _TextCsvCursors.takeNextRowTextAsReply(targetAnkerNumber);
messageDisplay(`返信対象有り。アンカー先: ${targetAnkerNumber}`);
return {
...r,
updatedLoopStatuses:
_LoopStatuses.updateMinAnker(targetAnkerNumber),
};
}
}
if (SETTINGS.postSettings.noAnkerPost) {
//返信対象無し、或いは返信しない設定の場合。アンカー無し投稿文を作る。
const r = _TextCsvCursors.takeNextRowTextAsNoAnker();
messageDisplay('返信対象無し。アンカー無し投稿。');
return {
...r,
updatedLoopStatuses: _LoopStatuses,
};
}
return null;
})();
if (p) {
//投稿。
nickname:SETTINGS.nameSettings.nickname,
korokoro:SETTINGS.nameSettings.korokoro,
area:SETTINGS.nameSettings.area,
}),
SETTINGS.mail,
p.text,
);
//_TextCsvCursorsと_LoopStatusesを更新。
_TextCsvCursors = p.updatedTextCsvCursors;
_LoopStatuses = p.updatedLoopStatuses.incrementPostCount();
`投稿回数: ${_LoopStatuses.currentPostCount()}`,
`minAnker: ${_LoopStatuses.currentMinAnker()}`,
`今回アンカー無し投稿取得行: ${_TextCsvCursors.currentRows().noAnker}`,
`今回アンカー有り投稿取得行: ${_TextCsvCursors.currentRows().reply}`,
]);
} else {
`返信対象が現われるのを待機中...。`,
`投稿回数: ${_LoopStatuses.currentPostCount()}`,
`minAnker: ${_LoopStatuses.currentMinAnker()}`,
`今回アンカー無し投稿取得行: ${_TextCsvCursors.currentRows().noAnker}`,
`今回アンカー有り投稿取得行: ${_TextCsvCursors.currentRows().reply}`,
]);
}
wait(SETTINGS.baseWaitTime + randomRange(0,SETTINGS.waitTimeRange));
}
}
/**
* @param {string} serverNameサーバー名
* @param {MyPosterName} _MyPosterName
*/
serverName,
postMail,
_MyText,
retryTimes = 0,
) {
const r =
retryTimes === 0
? newValuesOfPost(serverName, _MyPosterName,postMail, _MyText).post(
postTo5chTread,
)
serverName,
postMail,
_MyText,
).postSubstring(retryTimes,postTo5chTread,postConfirm);
if (r) {
back();
return;
}
wait(7);
consterror = createPostErrorMessage().analyze();
messageDisplay(error.message);
if (error.order === 'KILL') {
kill();
} else if (error.order === 'SKIP') {
return;
} else if (error.order === 'TRUNCATE') {
back();
serverName,
postMail,
_MyText,
retryTimes + 1,
);
} else if (error.order === 'WAIT') {
wait(SETTINGS.waitTimeForAvoidingPunishment);
serverName,
postMail,
_MyText,
retryTimes,
);
} else if (error.order === 'LOGIN') {
serverName,
postMail,
_MyText,
retryTimes,
);
}
return;
}
/**
*現在のIPアドレスに、SETTINGS.ipSettings.avoidTheIpの値が含まれていないことを確認する。含まれていたらマクロを一時停止。
* @returns
*/
function checkCurrentIpNotTheIp() {
openUrl('https://www.cman.jp/network/support/go_access.cgi');
const _IpAdress = createIpAdressFromCMan();
if (_IpAdress.includes(SETTINGS.ipSettings.avoidTheIp)) {
pause('現在のIPに指定した値が含まれていることを確認。');
}
return;
}
/**
* @returns
*/
if (
SETTINGS.postSettings.noAnkerPost ===false &&
SETTINGS.postSettings.replyPost ===false
) {
return kill('設定エラー。noAnkerPostとreplyPost両方ともfalseになってる。');
}
if (
SETTINGS.postSettings.noAnkerPostTextCsvStartRow < 0 &&
SETTINGS.postSettings.replyPostTextCsvStartRow < 0
) {
return kill(
'設定エラー。noAnkerPostTextCsvStartRowとreplyPostTextCsvStartRow両方とも-1になってる。',
);
}
if (
SETTINGS.postSettings.noAnkerPostTextCsvStartRow === 0 ||
SETTINGS.postSettings.replyPostTextCsvStartRow === 0
) {
return kill(
'設定エラー。noAnkerPostTextCsvStartRow/replyPostTextCsvStartRowの初期値は-1或いは1以上で。',
);
}
}
/**
*/
function openPromptThreadUrl() {
consturl = prompt('スレURLを入力');
}
/**
* 開いてるスレのレス全て読み取ってPostListインスタンスを作って返す。
* 重すぎるので使うのやめ。どうやらインスタンスの大量生成が原因な模様。
*/
constposts = window.document.getElementsByClassName('post');
return newPostList(Array.from(posts).map((e) => newPost(e)));
}
/**
* 開いてるスレのレス全て取得してPostDOMListに格納して返す。
* @returns
*/
function createPostDOMList() {
constposts = window.document.getElementsByClassName('post');
for (letindex = 0;index <posts.length;index++) {
//HTMLCollectionからElementを1つずつ抽出して配列に。
arrPostDOMList.push(posts.item(index));
}
return newPostDOMList(arrPostDOMList);
}
/**
* 開いてる投稿結果画面に表示されてるエラーを読み取ってPostErrorMessageインスタンスを作って返す。
*/
function createPostErrorMessage() {
window.document
パスワードで何文字以上、小文字大文字数字記号全部使って、定期的に変えてとか要求多すぎ
パソコンの性能が上がったから総当り全部終わるのに◯日しかかからないんだよーなんて言ってもそれzipみたいな手元にあるのが前提
ネット経由なら1回の試行で1秒前後はかかるんだから総当りでかかる時間は生きてる間に終わらない
まず先にサービスが終わってる
そもそもある程度しっかりしてるところなら同じIDへの試行で何連続か間違えたらロックされる
総当りは成り立たない
考えを変えてパスワードを固定でIDを変える方法もあるけど、それってpasswordみたいな簡単なパスワードを設定してる人が困るだけ
実際10年以上前に作ったサブアカは適当にキーボードを打って作った想定し辛い文字列だけど小文字のみで6文字とかその程度だったけど未だに不正ログインとかない
パスワード設定時に要求するなら文字数や文字種別とかじゃなくて攻撃に使いそうな辞書に乗ってないことだけのチェックでいいんだよ
はてなで時々話題になってるけど、受託開発で企業向けなもの作ってると割と普通にある
ユーザ向けよりもエラー起きたときの原因究明とか求められるし本番でもデバッグモードで動かして全ログ出したりとかもある
ログイン出来ないんですけどの回答に「登録されていたパスワードは『password』ですが、入力されたパスワードは『password 』で末尾にスペースが含まれているためにログインに失敗していました」みたいな返答が普通にあるわけ
一般ユーザ向けだとパスワード間違ってるんじゃないですか?リセットしてみてくださいとかで済む
実際自分がユーザとしてなんだったかのサービスを使ったときメールが届かないので問い合わせたらこっちのサーバは動作してるのでGoogleとかメールサービス側に問い合わせてくださいみたいなこと言われたことがある
それくらい雑なものでよければいいんだけど変に要求されるからパスワードは平文でログにもパスワードが含まれるとかも当たり前になる
あとそういえば一般に公開してるものだけどログインではなくハッシュ値使ったURLを個人のマイページにしてたりもあった
URL知らないから他の人は見れないけど知っていれば誰でも見れるってやつ
一部の人はありえないとかいいそうだけど個人的にはURL知らなければアクセスできないは非公開と言ってもいい気はしてるけどね
youtube の限定公開とかgist のプライベートとかでもURL知ってる人しか見れないものを非公開みたいな扱いでつかってるし
URL知ってたら見れるってそれはパスワード知ってれば見れるも一緒
数十文字のハッシュ値を見つけるより人によっては10文字もないパスワードのほうが総当りで当たる確率高いよ
そんな感じで文化の違いとかを感じたって話
普段なら絶対に出ないのだが、緊急事態宣言の影響で在宅勤務に切り替わっていたので仕事の案件かもと思い出てみることに。
「〇〇カードです。お客様のカードの不正利用の疑いがあります。××という通販サイトで50万円決済しようとされた覚えはありますか?」
まだ残っていた眠気が、一瞬で吹き飛ぶ。
カード会社のオペレーターが伝えた通販サイトは確かに利用したことがあるが、1年以上前だ。
やられた。
直ちにカード利用停止をしてもらったが、連休前で再発行の対応が遅くなり、10日間ほどかかるという。
公共料金や各種サブスクリプションの支払いに使用していたメインカードなので影響甚大。
これは大変なことになったぞと思い、直ちに上司に連絡し仕事を休むことにした。
はじめに、不正利用があった通販サイトに連絡する。オペレーターとやり取りをしていてわかったことは4つ。
・昨晩、私のアカウントが不正ログインを食らったようで、メールアドレスが『mail.com』というアメリカのフリーメールに変更されていた。
・通販サイトは誤ったパスワードを5回連続で入力されるとアカウントがロックされる仕様
・パスワードデータは、通販サイトとは別業者に委託して管理している。サイト運営者も調べられない。
この通販サイト側の言う事を信じるならば、私のメールアドレスとパスワードが委託業者から流出した可能性が高いのだろうか?
とりあえずはウイルススキャンを実行し、乗っ取られると死活問題になるGogole,Amazon等のPasswordを全変更。
そういえばはてなもアカウント乗っ取られると地味にヤバいよなあと思ってここもPassword変更。
(blogに書いてた赤裸々な話を実名入りで利害関係者にばらまかれるリスクあるんだぜ。下手すりゃカード情報よりヤバいかもしれん。 )
初めてのこと過ぎてこういう時にどうしたらいいのか思いつかんのだが、どこかに通報した方がよいのだろうか?
他にやるべきことあるだろうか?
Accepting the Terms Privacy Policy
These Terms of Service ("Terms") are a legalagreementbetween we andyou ("you").By installing or usinganyapplication ("Service")you agree to be boundby these Terms.Byaccessing or using the Service,you agree thatyou have read, understood,and accept to be boundby the Terms. We reserve the right, initssole discretion, to modify or revise these Termsatanytime, andyou agree to be boundby such modifications or revisions. Ifyou do not agree to the Terms, do not use the Service.
Users are responsible for periodicallyviewing the Terms.Your continued use of the Service after achange or updatehas beenmadewill constituteyour acceptance to the revised Terms. Ifyou do not agree to the Termsyouronly remedyis to discontinueyour use of the Service and cancelany accountsyou havemade using the Service.
We reserve the right to refuseanyuseraccess to the Services without notice foranyreason, including, but not limited to, aviolation of the Terms.
You represent thatyou are 13 years old or older. Ifyou arebetween theages of 13 and 18,you represent thatyour legal guardianhasreviewedand agrees to the Terms.
Intellectual Property/Ownership
All materials that are part of the Service (including, but not limited to,designs,text, graphics, pictures,video, information,applications,software,music, sound and other files, and their selectionand arrangement) are protectedby law from unauthorized use.
We grantyou a personal, non-exclusive, non-transferable, revocable, limitedscope license to use the Servicesolely for the purpose ofviewing and using the applicable Services and for no other purpose whatsoever.Your license to use the Servicesis limitedby these Terms.
You agree thatyou arewillingly publishing the contenton the Service using technology and tools providedby us.You understand and agree thatyoumay not distribute, sell, transfer or license this content and/orapplication inany manner, inany country, oronany socialnetwork oranothermedium withoutthe explicit written permission of us. We reserve the right to remove and permanentlydeleteanyUser Content from the Service with or without notice.
You agree thatallyourcommunicationswith theCommunication Channels are public, and thusyou have no expectation of privacy regardingyour use of theCommunication Channels. Weis not responsible for information thatyou choose toshareon theCommunication Channels, or for the actions of otherusers.
Privacy and Protection of Personal Information
By using the Service,you agree to the collection and use ofyour personal informationasoutlined in this Privacy Policy. Wemay amend the Privacy Policy fromtime totime, and we encourageyou to consult the Privacy Policy regularly forchanges.
Acookieis a small data file that we transfer toyourcomputer’s hard disk, generally to quickly identify auser'scomputer and to "remember" things about theuser'svisit, suchasyour preferences or ausername andpassword. The Service sendscookies toyourcomputer whenyouaccess orview the content of us. The information contained in acookiemay be linked toyour personal information for purposes suchas improving the quality of our service, tailoring recommendations toyour interests, and making the Service easier to use.You can disablecookiesatanytime, althoughyoumay not be able toaccess or use features of the Service.
Third-Party Advertising Companies
Wemay use third-party advertising companies to serve adson the Service. We do not provideany personal information to third-party advertising companieson a non-aggregate basis. Our system and the third-party advertising technologymay use aggregate information, non-personal information, Ourcookiesonyour harddrive andyour use of the Service to target advertisements. In addition, advertisersmay use other third-party advertising technology to target advertisingon other sites. If advertisements are served toyou, a unique third-partycookie orcookiesmay be placedonyourcomputer. Similarly, third-party advertising companiesmay provide us withpixel tags (also called “clear gifs” or “beacons”) to help manage and optimizeonline advertising. Beaconsenable us to recognize abrowser’scookie when abrowservisits the siteon whichis a beaconis located, and to learn which banner ads bringusers to a given site.
Changing or DeletingYour Information
Youmayreview, update, correct ordeleteany personal informationby changing the applicable information inyourprofile pageonFacebook and/oranother socialnetwork (s). Ifyou completelydeleteall this information,your accountmay become deactivated. Ifyou wouldlike us todeleteyour record in our system, please contact us and wewillattempt to accommodateyour request if we are not legally obligated to retain the record.
Security
We have put in placereasonable technical and organizational measures designed to secureyour personal information from accidental loss and from unauthorizedaccess, use, alteration or disclosure. However, we cannot guarantee that unauthorized third partieswill never be able to overcome those measures or useyour personal information for improper purposes. Also pleasenote that email and messaging systems are not considered secure, so we discourageyou from sending us personal information through thesemediums.
Policy Regarding Children
The Serviceis not geared toward children under theage of 13 and we do not knowingly collect personal information from children under theage of 13. If we learn that a child under 13has provided us with personal information wewilldelete such information from our filesas quicklyas possible.
Disclaimer of Warranty; Limitation of Liability
You agree thatyour use of the Service shall beatyoursole risk. To the fullest extent permittedby law, We,its officers, directors, employees,and agents disclaimall warranties,express or implies, in connectionwith thewebsite andyour use thereof including implied warranties oftitle, merchantability, fitness for a particular purpose or non-infringement, accuracy,authority, completeness, usefulness, andtimeliness. Wemake no warranties or representations about the accuracy or completeness of the content of the Service and of the content ofany sites linked to the Service; Weassume no liability or responsibility forany (i) errors, mistakes, or inaccuracies of content, (ii) personal injury or propertydamage, ofanynature whatsoever, resulting fromyouraccess to and use of the Service, (iii)any unauthorizedaccess to or use of our secure servers and/oranyand all personal information and/or financial information stored therein, (iv)any interruption or cessation oftransmission to or from the Service, (v)any bugs,viruses, trojan horses, orthe like whichmay be transmitted to or through the Servicebyany third party, and/or (vi)any errors or omissions inany content or forany loss ordamage ofany kind incurredas a result of the use ofany content posted, emailed, transmitted, orotherwisemade availablevia the Service.
In no eventwill We,its directors, officers,agents, contractors, partners and employees, be liable toyou orany third person forany special, direct, indirect, incidental, special, punitive, or consequentialdamages whatsoever includinganylost profits orlost data arising fromyour use of the Service or other materialson,accessed through or downloaded from the Service, whether basedon warranty, contract, tort, orany other legaltheory, and whether or not We have been advised of thepossibility of thesedamages. The foregoing limitation of liability shall apply to the fullest extent permittedby law in the applicablejurisdiction.You specifically acknowledge that We shall not be liable foruser submissions or the defamatory, offensive, or illegal conduct ofany third party and that the risk of harm ordamage from the foregoing rests entirelywith you.
You agree to indemnify and hold We, and each ofits directors, officers,agents, contractors, partners, and employees, harmless fromand againstany loss, liability, claim, demand,damages, costs and expenses, includingreasonableattorney's fees, arisingout of or in connection with (i)your use ofand access to the Service; (ii)yourviolation ofany term of these Terms of Service; (iii)yourviolation ofany third party right, including without limitationanycopyright, property, or privacy right; (iv)any claim thatone ofyourUser Submissions causeddamage to a third party; or (v)any Contentyou post orshareon or through the Service.
General
Byvisiting or using the Service,you agree that thelaws ofUK, without regard to principles ofconflict oflaws and regardless ofyour location,will govern these Terms of Serviceand any dispute ofany sort that might arisebetweenyou and us.
Contacting Us
Ifyou haveany questions about these Terms of Service, please contact usat damonskimetsu.contact@gmail.com
## Accepting the Terms and Privacy Policy
These Terms of Service ("Terms") are a legalagreementbetween we andyou ("you").By installing or usinganyapplication ("Service")you agree to be boundby these Terms.Byaccessing or using the Service,you agree thatyou have read, understood,and accept to be boundby the Terms. We reserve the right, initssole discretion, to modify or revise these Termsatanytime, andyou agree to be boundby such modifications or revisions. Ifyou do not agree to the Terms, do not use the Service.
Users are responsible for periodicallyviewing the Terms.Your continued use of the Service after achange or updatehas beenmadewill constituteyour acceptance to the revised Terms. Ifyou do not agree to the Termsyouronly remedyis to discontinueyour use of the Service and cancelany accountsyou havemade using the Service.
We reserve the right to refuseanyuseraccess to the Services without notice foranyreason, including, but not limited to, aviolation of the Terms.
You represent thatyou are 13 years old or older. Ifyou arebetween theages of 13 and 18,you represent thatyour legal guardianhasreviewedand agrees to the Terms.
##Intellectual Property/Ownership
All materials that are part of the Service (including, but not limited to,designs,text, graphics, pictures,video, information,applications,software,music, sound and other files, and their selectionand arrangement) are protectedby law from unauthorized use.
We grantyou a personal, non-exclusive, non-transferable, revocable, limitedscope license to use the Servicesolely for the purpose ofviewing and using the applicable Services and for no other purpose whatsoever.Your license to use the Servicesis limitedby these Terms.
You agree thatyou arewillingly publishing the contenton the Service using technology and tools providedby us.You understand and agree thatyoumay not distribute, sell, transfer or license this content and/orapplication inany manner, inany country, oronany socialnetwork oranothermedium withoutthe explicit written permission of us. We reserve the right to remove and permanentlydeleteanyUser Content from the Service with or without notice.
You agree thatallyourcommunicationswith theCommunication Channels are public, and thusyou have no expectation of privacy regardingyour use of theCommunication Channels. Weis not responsible for information thatyou choose toshareon theCommunication Channels, or for the actions of otherusers.
Privacy and Protection of Personal Information
By using the Service,you agree to the collection and use ofyour personal informationasoutlined in this Privacy Policy. Wemay amend the Privacy Policy fromtime totime, and we encourageyou to consult the Privacy Policy regularly forchanges.
Acookieis a small data file that we transfer toyourcomputer’s hard disk, generally to quickly identify auser'scomputer and to "remember" things about theuser'svisit, suchasyour preferences or ausername andpassword. The Service sendscookies toyourcomputer whenyouaccess orview the content of us. The information contained in acookiemay be linked toyour personal information for purposes suchas improving the quality of our service, tailoring recommendations toyour interests, and making the Service easier to use.You can disablecookiesatanytime, althoughyoumay not be able toaccess or use features of the Service.
Third-Party Advertising Companies
Wemay use third-party advertising companies to serve adson the Service. We do not provideany personal information to third-party advertising companieson a non-aggregate basis. Our system and the third-party advertising technologymay use aggregate information, non-personal information, Ourcookiesonyour harddrive andyour use of the Service to target advertisements. In addition, advertisersmay use other third-party advertising technology to target advertisingon other sites. If advertisements are served toyou, a unique third-partycookie orcookiesmay be placedonyourcomputer. Similarly, third-party advertising companiesmay provide us withpixel tags (also called “clear gifs” or “beacons”) to help manage and optimizeonline advertising. Beaconsenable us to recognize abrowser’scookie when abrowservisits the siteon whichis a beaconis located, and to learn which banner ads bringusers to a given site.
Changing or DeletingYour Information
Youmayreview, update, correct ordeleteany personal informationby changing the applicable information inyourprofile pageonFacebook and/oranother socialnetwork (s). Ifyou completelydeleteall this information,your accountmay become deactivated. Ifyou wouldlike us todeleteyour record in our system, please contact us and wewillattempt to accommodateyour request if we are not legally obligated to retain the record.
Security
We have put in placereasonable technical and organizational measures designed to secureyour personal information from accidental loss and from unauthorizedaccess, use, alteration or disclosure. However, we cannot guarantee that unauthorized third partieswill never be able to overcome those measures or useyour personal information for improper purposes. Also pleasenote that email and messaging systems are not considered secure, so we discourageyou from sending us personal information through thesemediums.
Policy Regarding Children
The Serviceis not geared toward children under theage of 13 and we do not knowingly collect personal information from children under theage of 13. If we learn that a child under 13has provided us with personal information wewilldelete such information from our filesas quicklyas possible.
Disclaimer of Warranty; Limitation of Liability
You agree thatyour use of the Service shall beatyoursole risk. To the fullest extent permittedby law, We,its officers, directors, employees,and agents disclaimall warranties,express or implies, in connectionwith thewebsite andyour use thereof including implied warranties oftitle, merchantability, fitness for a particular purpose or non-infringement, accuracy,authority, completeness, usefulness, andtimeliness. Wemake no warranties or representations about the accuracy or completeness of the content of the Service and of the content ofany sites linked to the Service; Weassume no liability or responsibility forany (i) errors, mistakes, or inaccuracies of content, (ii) personal injury or propertydamage, ofanynature whatsoever, resulting fromyouraccess to and use of the Service, (iii)any unauthorizedaccess to or use of our secure servers and/oranyand all personal information and/or financial information stored therein, (iv)any interruption or cessation oftransmission to or from the Service, (v)any bugs,viruses, trojan horses, orthe like whichmay be transmitted to or through the Servicebyany third party, and/or (vi)any errors or omissions inany content or forany loss ordamage ofany kind incurredas a result of the use ofany content posted, emailed, transmitted, orotherwisemade availablevia the Service.
In no eventwill We,its directors, officers,agents, contractors, partners and employees, be liable toyou orany third person forany special, direct, indirect, incidental, special, punitive, or consequentialdamages whatsoever includinganylost profits orlost data arising fromyour use of the Service or other materialson,accessed through or downloaded from the Service, whether basedon warranty, contract, tort, orany other legaltheory, and whether or not We have been advised of thepossibility of thesedamages. The foregoing limitation of liability shall apply to the fullest extent permittedby law in the applicablejurisdiction.You specifically acknowledge that We shall not be liable foruser submissions or the defamatory, offensive, or illegal conduct ofany third party and that the risk of harm ordamage from the foregoing rests entirelywith you.
You agree to indemnify and hold We, and each ofits directors, officers,agents, contractors, partners, and employees, harmless fromand againstany loss, liability, claim, demand,damages, costs and expenses, includingreasonableattorney's fees, arisingout of or in connection with (i)your use ofand access to the Service; (ii)yourviolation ofany term of these Terms of Service; (iii)yourviolation ofany third party right, including without limitationanycopyright, property, or privacy right; (iv)any claim thatone ofyourUser Submissions causeddamage to a third party; or (v)any Contentyou post orshareon or through the Service.
General
Byvisiting or using the Service,you agree that thelaws ofUK, without regard to principles ofconflict oflaws and regardless ofyour location,will govern these Terms of Serviceand any dispute ofany sort that might arisebetweenyou and us.
Contacting Us
Ifyou haveany questions about these Terms of Service, please contact usat reposting23334.contact@gmail.com
## Accepting the Terms and Privacy Policy
These Terms of Service ("Terms") are a legalagreementbetween we andyou ("you").By installing or usinganyapplication ("Service")you agree to be boundby these Terms.Byaccessing or using the Service,you agree thatyou have read, understood,and accept to be boundby the Terms. We reserve the right, initssole discretion, to modify or revise these Termsatanytime, andyou agree to be boundby such modifications or revisions. Ifyou do not agree to the Terms, do not use the Service.
Users are responsible for periodicallyviewing the Terms.Your continued use of the Service after achange or updatehas beenmadewill constituteyour acceptance to the revised Terms. Ifyou do not agree to the Termsyouronly remedyis to discontinueyour use of the Service and cancelany accountsyou havemade using the Service.
We reserve the right to refuseanyuseraccess to the Services without notice foranyreason, including, but not limited to, aviolation of the Terms.
You represent thatyou are 13 years old or older. Ifyou arebetween theages of 13 and 18,you represent thatyour legal guardianhasreviewedand agrees to the Terms.
##Intellectual Property/Ownership
All materials that are part of the Service (including, but not limited to,designs,text, graphics, pictures,video, information,applications,software,music, sound and other files, and their selectionand arrangement) are protectedby law from unauthorized use.
We grantyou a personal, non-exclusive, non-transferable, revocable, limitedscope license to use the Servicesolely for the purpose ofviewing and using the applicable Services and for no other purpose whatsoever.Your license to use the Servicesis limitedby these Terms.
You agree thatyou arewillingly publishing the contenton the Service using technology and tools providedby us.You understand and agree thatyoumay not distribute, sell, transfer or license this content and/orapplication inany manner, inany country, oronany socialnetwork oranothermedium withoutthe explicit written permission of us. We reserve the right to remove and permanentlydeleteanyUser Content from the Service with or without notice.
You agree thatallyourcommunicationswith theCommunication Channels are public, and thusyou have no expectation of privacy regardingyour use of theCommunication Channels. Weis not responsible for information thatyou choose toshareon theCommunication Channels, or for the actions of otherusers.
Privacy and Protection of Personal Information
By using the Service,you agree to the collection and use ofyour personal informationasoutlined in this Privacy Policy. Wemay amend the Privacy Policy fromtime totime, and we encourageyou to consult the Privacy Policy regularly forchanges.
Acookieis a small data file that we transfer toyourcomputer’s hard disk, generally to quickly identify auser'scomputer and to "remember" things about theuser'svisit, suchasyour preferences or ausername andpassword. The Service sendscookies toyourcomputer whenyouaccess orview the content of us. The information contained in acookiemay be linked toyour personal information for purposes suchas improving the quality of our service, tailoring recommendations toyour interests, and making the Service easier to use.You can disablecookiesatanytime, althoughyoumay not be able toaccess or use features of the Service.
Third-Party Advertising Companies
Wemay use third-party advertising companies to serve adson the Service. We do not provideany personal information to third-party advertising companieson a non-aggregate basis. Our system and the third-party advertising technologymay use aggregate information, non-personal information, Ourcookiesonyour harddrive andyour use of the Service to target advertisements. In addition, advertisersmay use other third-party advertising technology to target advertisingon other sites. If advertisements are served toyou, a unique third-partycookie orcookiesmay be placedonyourcomputer. Similarly, third-party advertising companiesmay provide us withpixel tags (also called “clear gifs” or “beacons”) to help manage and optimizeonline advertising. Beaconsenable us to recognize abrowser’scookie when abrowservisits the siteon whichis a beaconis located, and to learn which banner ads bringusers to a given site.
Changing or DeletingYour Information
Youmayreview, update, correct ordeleteany personal informationby changing the applicable information inyourprofile pageonFacebook and/oranother socialnetwork (s). Ifyou completelydeleteall this information,your accountmay become deactivated. Ifyou wouldlike us todeleteyour record in our system, please contact us and wewillattempt to accommodateyour request if we are not legally obligated to retain the record.
Security
We have put in placereasonable technical and organizational measures designed to secureyour personal information from accidental loss and from unauthorizedaccess, use, alteration or disclosure. However, we cannot guarantee that unauthorized third partieswill never be able to overcome those measures or useyour personal information for improper purposes. Also pleasenote that email and messaging systems are not considered secure, so we discourageyou from sending us personal information through thesemediums.
Policy Regarding Children
The Serviceis not geared toward children under theage of 13 and we do not knowingly collect personal information from children under theage of 13. If we learn that a child under 13has provided us with personal information wewilldelete such information from our filesas quicklyas possible.
Disclaimer of Warranty; Limitation of Liability
You agree thatyour use of the Service shall beatyoursole risk. To the fullest extent permittedby law, We,its officers, directors, employees,and agents disclaimall warranties,express or implies, in connectionwith thewebsite andyour use thereof including implied warranties oftitle, merchantability, fitness for a particular purpose or non-infringement, accuracy,authority, completeness, usefulness, andtimeliness. Wemake no warranties or representations about the accuracy or completeness of the content of the Service and of the content ofany sites linked to the Service; Weassume no liability or responsibility forany (i) errors, mistakes, or inaccuracies of content, (ii) personal injury or propertydamage, ofanynature whatsoever, resulting fromyouraccess to and use of the Service, (iii)any unauthorizedaccess to or use of our secure servers and/oranyand all personal information and/or financial information stored therein, (iv)any interruption or cessation oftransmission to or from the Service, (v)any bugs,viruses, trojan horses, orthe like whichmay be transmitted to or through the Servicebyany third party, and/or (vi)any errors or omissions inany content or forany loss ordamage ofany kind incurredas a result of the use ofany content posted, emailed, transmitted, orotherwisemade availablevia the Service.
In no eventwill We,its directors, officers,agents, contractors, partners and employees, be liable toyou orany third person forany special, direct, indirect, incidental, special, punitive, or consequentialdamages whatsoever includinganylost profits orlost data arising fromyour use of the Service or other materialson,accessed through or downloaded from the Service, whether basedon warranty, contract, tort, orany other legaltheory, and whether or not We have been advised of thepossibility of thesedamages. The foregoing limitation of liability shall apply to the fullest extent permittedby law in the applicablejurisdiction.You specifically acknowledge that We shall not be liable foruser submissions or the defamatory, offensive, or illegal conduct ofany third party and that the risk of harm ordamage from the foregoing rests entirelywith you.
You agree to indemnify and hold We, and each ofits directors, officers,agents, contractors, partners, and employees, harmless fromand againstany loss, liability, claim, demand,damages, costs and expenses, includingreasonableattorney's fees, arisingout of or in connection with (i)your use ofand access to the Service; (ii)yourviolation ofany term of these Terms of Service; (iii)yourviolation ofany third party right, including without limitationanycopyright, property, or privacy right; (iv)any claim thatone ofyourUser Submissions causeddamage to a third party; or (v)any Contentyou post orshareon or through the Service.
General
Byvisiting or using the Service,you agree that thelaws ofUK, without regard to principles ofconflict oflaws and regardless ofyour location,will govern these Terms of Serviceand any dispute ofany sort that might arisebetweenyou and us.
Contacting Us
Ifyou haveany questions about these Terms of Service, please contact usat reposting23334.contact@gmail.com
