{"id":3039,"date":"2020-04-01T09:56:41","date_gmt":"2020-04-01T00:56:41","guid":{"rendered":"\/blog\/?p=3039"},"modified":"2023-09-21T09:26:42","modified_gmt":"2023-09-21T00:26:42","slug":"%ec%a0%95%ec%a0%81%eb%b6%84%ec%84%9d-%ec%9a%a9%ec%96%b4-taint-%eb%b6%84%ec%84%9d","status":"publish","type":"post","link":"https:\/\/hasu0707.duckdns.org\/blog\/?p=3039","title":{"rendered":"[\uc815\uc801\ubd84\uc11d \uc6a9\uc5b4] Taint \ubd84\uc11d"},"content":{"rendered":"

\uc815\uc801 \ubd84\uc11d \ub3c4\uad6c\uc758 \uc0ac\uc6a9\ubc95\uc744 \uc774\ud574\ud558\ub294 \ub370 \ub3c4\uc6c0\uc774 \ub418\ub294 'Taint \ubd84\uc11d'\uc5d0 \ub300\ud55c \uc124\uba85\uc744 \ub4dc\ub9ac\uaca0\uc2b5\ub2c8\ub2e4. Taint \ubd84\uc11d\uc740 \uc815\uc801\uc774\ub098 \ub3d9\uc801\uc73c\ub85c \ud504\ub85c\uadf8\ub7a8\uc744 \ubd84\uc11d\ud560 \ub54c \ubaa8\ub450 \uc0ac\uc6a9\ud560 \uc218 \uc788\ub294 \ubc29\ubc95 \uc911\uc758 \ud558\ub098\ub85c, \ud504\ub85c\uadf8\ub7a8\uc758 \ud750\ub984\uc5d0 \ub530\ub77c \uc0ac\uc6a9\uc790\uc758 \uc785\ub825\uc744 \ucd94\uc801\ud558\uba74\uc11c \ubd84\uc11d\ud558\ub294 \ubc29\ubc95\uc785\ub2c8\ub2e4.<\/span><\/p>\n

Taint \ubd84\uc11d \uc2dc \uc54c\uc544\ub450\uba74 \uc88b\uc740 \uc6a9\uc5b4\uac00 \ub450 \uac1c \uc788\ub294\ub370\uc694. \ubc14\ub85c 'taint source<\/strong>'\uc640 'sink<\/strong>'\uc785\ub2c8\ub2e4. \uc0ac\uc6a9\uc790\uc758 \uc785\ub825\uc73c\ub85c \ub9cc\ub4e4\uc5b4\uc9c4 \uac12\uc744 \uc624\uc5fc(taint)\ub41c \uac12\uc774\ub77c\uace0 \ud558\uace0 \uc774\ub97c taint source\ub77c\uace0 \ud45c\ud604\ud569\ub2c8\ub2e4. \uadf8\ub9ac\uace0 taint source\uac00 \uc778\uc790\ub85c \uc8fc\uc5b4\uc84c\uc744 \ub54c \ubb38\uc81c\uac00 \ubc1c\uc0dd\ud558\ub294 \ud568\uc218\ub97c sink\ub77c\uace0 \ud569\ub2c8\ub2e4. \uc608\ub97c \ub4e4\uc5b4 \uc790\ubc14\uc5d0\uc11c\ub294 \ud30c\uc77c\uc744 \uc5f4 \uc218 \uc788\ub294 java.io.File() \uba54\uc11c\ub4dc\ub098 \uc784\uc758\uc758 \uba85\ub839\uc744 \uc2e4\ud589\ud560 \uc218 \uc788\ub294 java.lang.Runtime.exec() \uba54\uc11c\ub4dc\uac00 sink\uc785\ub2c8\ub2e4. \ub3d9\uc801 \ubd84\uc11d\uc5d0\uc11c Taint \ubd84\uc11d\uc744 \uc0ac\uc6a9\ud560 \ub54c\ub294 \ud504\ub85c\uadf8\ub7a8\uc5d0 \uc2e4\uc81c \uc785\ub825\ub418\ub294 \uac12\uc744 taint source\ub85c \uc9c0\uc815\ud558\uace0 \ud504\ub85c\uadf8\ub7a8\uc5d0\uc11c \ud574\ub2f9 \uc785\ub825 \uac12\uc744 \ub2e4\ub8e8\ub294 \ubd80\ubd84\ubd80\ud130 \ucd94\uc801\ud569\ub2c8\ub2e4. \ud558\uc9c0\ub9cc \uc815\uc801 \ubd84\uc11d\uc5d0\uc11c Taint \ubd84\uc11d\uc744 \uc0ac\uc6a9\ud560 \ub54c\ub294 \uc0ac\uc6a9\uc790\uc758 \uc785\ub825\uc744 \uc815\ud655\ud788 \uc815\uc758\ud558\uae30 \ud798\ub4e4\uae30 \ub54c\ubb38\uc5d0 taint source\ub97c \uc784\uc758\ub85c \uc815\ud558\uc5ec \ubd84\uc11d\uc744 \uc9c4\ud589\ud569\ub2c8\ub2e4.<\/span><\/p>\n\n\n

<\/p>\n","protected":false},"excerpt":{"rendered":"

\uc815\uc801 \ubd84\uc11d \ub3c4\uad6c\uc758 \uc0ac\uc6a9\ubc95\uc744 \uc774\ud574\ud558\ub294 \ub370 \ub3c4\uc6c0\uc774 \ub418\ub294 ‘Taint \ubd84\uc11d’\uc5d0 \ub300\ud55c \uc124\uba85\uc744 \ub4dc\ub9ac\uaca0\uc2b5\ub2c8\ub2e4. Taint \ubd84\uc11d\uc740 \uc815\uc801\uc774\ub098 \ub3d9\uc801\uc73c\ub85c \ud504\ub85c\uadf8\ub7a8\uc744 \ubd84\uc11d\ud560 \ub54c \ubaa8\ub450 \uc0ac\uc6a9\ud560 \uc218 \uc788\ub294 \ubc29\ubc95 \uc911\uc758 \ud558\ub098\ub85c, \ud504\ub85c\uadf8\ub7a8\uc758 \ud750\ub984\uc5d0 \ub530\ub77c \uc0ac\uc6a9\uc790\uc758 \uc785\ub825\uc744 \ucd94\uc801\ud558\uba74\uc11c \ubd84\uc11d\ud558\ub294 \ubc29\ubc95\uc785\ub2c8\ub2e4. Taint \ubd84\uc11d \uc2dc \uc54c\uc544\ub450\uba74 \uc88b\uc740 \uc6a9\uc5b4\uac00 \ub450 \uac1c \uc788\ub294\ub370\uc694. \ubc14\ub85c ‘taint source’\uc640 ‘sink’\uc785\ub2c8\ub2e4. \uc0ac\uc6a9\uc790\uc758 \uc785\ub825\uc73c\ub85c \ub9cc\ub4e4\uc5b4\uc9c4 \uac12\uc744 \uc624\uc5fc(taint)\ub41c \uac12\uc774\ub77c\uace0 \ud558\uace0 […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_import_markdown_pro_load_document_selector":0,"_import_markdown_pro_submit_text_textarea":"","site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[12],"tags":[],"class_list":["post-3039","post","type-post","status-publish","format-standard","hentry","category-computing_security"],"_links":{"self":[{"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=\/wp\/v2\/posts\/3039","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=3039"}],"version-history":[{"count":0,"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=\/wp\/v2\/posts\/3039\/revisions"}],"wp:attachment":[{"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=3039"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=3039"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=3039"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}