| python |
Pythonタグが付けられた新着投稿 - Qiita |
ABC310をPythonで解いてみたよ。(A~E問題) |
https://qiita.com/hyouchun/items/17566069cf5915a19e42
|
atcoder |
2023-07-16 00:38:31 |
| Docker |
dockerタグが付けられた新着投稿 - Qiita |
wslでUbuntuをインストールからdockerまで |
https://qiita.com/gabakugik/items/7c1d3c831b020e5f6494
|
dockerdockerenginedocker |
2023-07-16 00:36:50 |
| Git |
Gitタグが付けられた新着投稿 - Qiita |
競合なしでgitのコミットの順番を変更する(rebase -i, revert) |
https://qiita.com/washikawau/items/ae8bb82712ae882511c6
|
rebaseirevert |
2023-07-16 00:00:26 |
| 海外TECH |
MakeUseOf |
The Best Apple CarPlay Apps for iPhone |
https://www.makeuseof.com/tag/best-apple-carplay-apps/
|
apple |
2023-07-15 15:15:19 |
| 海外TECH |
MakeUseOf |
How to Fix No Internet Access on an Ethernet Connection on Windows |
https://www.makeuseof.com/ethernet-connected-no-internet-access-windows/
|
windowsethernet |
2023-07-15 15:15:18 |
| 海外TECH |
DEV Community |
Patching a directory traversal attack vulnerability |
https://dev.to/donaldsebleung/patching-a-directory-traversal-attack-vulnerability-1n19
|
Patching a directory traversal attack vulnerabilityDate Consider the following component in my personal website responsible for serving static web assets from an OSS bucket to users subPath may contain zero or more path components The bucket donaldsebleung assets is mounted under mnt donaldsebleung assets in the container filesystem within the function assets which appends the request path subPath to the mount point in order to fetch the associated object from the bucket and return its contents to the user who initiated the request For reference the original source code of the assets function is shown below import os redef handler environ start response path info environ PATH INFO local path os path join mnt donaldsebleung assets path info local file exists os path isfile local path if not local file exists status Not Found response headers Content Type text plain start response status response headers return status with open local path rb as local file contents local file read status OK content type application octet stream is css re compile r css search local path if is css content type text css is png re compile r png search local path if is png content type image png is jpeg re compile r jpe g search local path if is jpeg content type image jpeg response headers Content Type content type start response status response headers return contents The intended behavior of the function is that it should only use the request path subPath to fetch the associated object from the bucket donaldsebleung assets and return its contents to the requesting user the function should never return content from other parts of the container filesystem e g the function source code located at code index py which should be kept hidden at all costs Now imagine you are a malicious actor tasked to fetch the source code located at code index py and disclose it to the public How would you trick the function to return its source code if at all possible Hint it s in the title Continue reading at donaldsebleung com |
2023-07-15 15:16:41 |
| Apple |
AppleInsider - Frontpage News |
How to add music to Apple Watch |
https://appleinsider.com/inside/apple-watch/tips/how-to-add-music-to-your-apple-watch-using-apple-music?utm_medium=rss
|
How to add music to Apple WatchApple Watch users looking to leave their phones at home have a couple of ways to add music to their wearable allowing for data free listening Here s how to do it Sync playlists and albums from your iPhone to your Apple Watch Apple gives Watch users two methods to add music One method has users sync music from their iPhones while the other requires a standard Apple Music subscription ーno Apple Music Voice ーbut allows for device downloads directly from your device Read more |
2023-07-15 15:53:52 |
| 海外TECH |
CodeProject Latest Articles |
Wexstream - Video Conferencing Platform with Node.js, React and Jitsi |
https://www.codeproject.com/Articles/5353196/Wexstream-Video-Conferencing-Platform-with-Node-js
|
jitsi |
2023-07-15 15:09:00 |
| ニュース |
BBC News - Home |
Unseeded Vondrousova stuns Jabeur to win Wimbledon |
https://www.bbc.co.uk/sport/tennis/66212165?at_medium=RSS&at_campaign=KARANGA
|
jabeur |
2023-07-15 15:11:18 |
| ニュース |
BBC News - Home |
Laura Kuenssberg: What could go wrong for Keir Starmer? |
https://www.bbc.co.uk/news/uk-politics-66211151?at_medium=RSS&at_campaign=KARANGA
|
labour |
2023-07-15 15:35:54 |
| ニュース |
BBC News - Home |
Wimbledon 2023: Marketa Vondrousova makes history by beating Ons Jabeur in final - highlights |
https://www.bbc.co.uk/sport/av/tennis/66212301?at_medium=RSS&at_campaign=KARANGA
|
Wimbledon Marketa Vondrousova makes history by beating Ons Jabeur in final highlightsWatch highlights as Marketa Vondrousova beats Ons Jabeur to become the first unseeded player to win the Wimbledon women s singles title |
2023-07-15 15:25:20 |
| IT |
週刊アスキー |
NZXTの新LEDファンは風量と風圧の最適なバランスを実現 |
https://weekly.ascii.jp/elem/000/004/145/4145510/
|
frgbcore |
2023-07-16 00:15:00 |
コメント
コメントを投稿