Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

MTDDC Tokyo 2011

8,026 views

Published on

Movable Type 5.1 の新機能と、半日でできるMTのセキュリティ対策。

Published in: Technology

MTDDC Tokyo 2011

  1. 1. MTDDC Tokyo 2011
  2. 2. :2009twitter: goodpicblog: www.goodpic.com
  3. 3. 5.1
  4. 4. ! "#$%&()*&+,- ...
  5. 5. 5.1
  6. 6. 5.1
  7. 7. 6/9 6/23 MTOS 4.292 Pro 4.37Advanced 5.06 5.12 :http://www.movabletype.jp/
  8. 8. MT
  9. 9. ✓✓✓✓
  10. 10. CGI
  11. 11. CGI http://example.com/cgi-bin/*.cgi /mt-static/ /*.html CGI
  12. 12. CGI IP DMZ/cgi-bin/* http://httpd.apache.org/docs/2.2/ja/mod/mod_authz_host.html
  13. 13. mt.cgi URLhttps://example.com/cgi-bin/mt/mt.cgi notmt.cgi
  14. 14. (mt-config.cgi)AdminScript notmt.cgi hogehoge.cgi
  15. 15. mt.cgi Basic mt-comments.cgi (mt-cp.cgi) OK (mt.cgi)/cgi-bin/mt.cgi
  16. 16. httpd.conf<Directory "/home/example/www"> etc.... .htaccess AuthType Basic AuthName "Restricted Files" AuthUserFile /path/to/.htpasswd <Files mt.cgi> Require valid-user </Files></Directory> http://httpd.apache.org/docs/2.2/ja/howto/auth.html
  17. 17. Basic MT ID SSL SSL ID
  18. 18. SSLSSL
  19. 19. (mt-config.cgi)StaticWebPath /mt-static CSS SSL SSL
  20. 20. (mt-config.cgi)AdminCGIPath URL(SSL) https://example.com/cgi-bin/mt/CGIPath URL http://example.com/cgi-bin/mt/ SSL
  21. 21. 1. SSL Forbidden httpd.conf<Directory "/home/example/www"> etc.... AuthType Basic .htaccess AuthName "Restricted Files" AuthUserFile /path/to/passwords <Files mt.cgi> Require valid-user SSLRequireSSL </Files></Directory>
  22. 22. 2. SSL httpd.conf<Directory "/home/example/www"> etc.... .htaccessRewriteEngine OnRewriteCond %{SERVER_PORT} ^80$RewriteRule ^(cgi-bin/mt.cgi)$ https://%{SERVER_NAME}/$1 [R,L]</Directory>
  23. 23. SSL
  24. 24. RapidSSL GeoTrust, Inc Go Daddy SSL $20 - 40 /
  25. 25. AssetFileExtensionsDeniedAssetFileExtensions MT 4.291 / 4.361 / 5.051 / 5.11
  26. 26. AssetFileExtensions"gif,jpe?g,png,bmp,tiff?,mp3,ogg,aiff,wav,wma,aac, flac,m4a,mov, avi,3gp,asf,mp4,qt,wmv,asx,mpg,flv,mkv,ogm" :
  27. 27. DeniedAssetFileExtensions"ascx,asis,asp,aspx,bat,cfc,cfm,cgi,cmd,com,cpl,dll,exe,htaccess,htm,html,inc,jhtml,js,jsb,jsp,mht,mhtml,msi,php,php2,php3,php4,php5,phps,phtm,phtml,pif,pl,pwml,py,reg,scr,sh,shtm,shtml,vbs,vxd" :
  28. 28. ✓✓✓✓
  29. 29. 5.2
  30. 30. Internet Explorer 9 5.13 5.14Safari / Firefox 5.1xChrome
  31. 31. http://communities.movabletype.jp/ http://bugs.movabletype.org/
  32. 32. 5.1
  33. 33. + +&Webkit
  34. 34. | |
  35. 35. <$mt:CategoryBasename$> URL<$mt:CategoryLabel$>
  36. 36. demo
  37. 37. • label• mt:TopLevelCategories • description• mt:SubCategories • basename• mt:TopLevelFolders • created_on• mt:SubFolders • modified_on • user_custom (default)<mt:SubCategoriessort_by=”label”sort_order=”descend”> • ascend • descend New in 5.1
  38. 38. <mt:SubCategories sort_by=”label”sort_order=”descend”> <mt:CategoryNext> <mt:CategoryPrevious></mt:SubCategories>
  39. 39. New in 5.1<mt:Entries> <mt:EntryPrimaryCategory> <$mt:CategoryLabel$> </mt:EntryPrimaryCategory></mt:Entries>
  40. 40. Before...MT5.0x
  41. 41. /
  42. 42. demo
  43. 43. MT
  44. 44. New in 5.1Ajax
  45. 45. IP Movable Type AdvancedMovable Type Advanced
  46. 46. <mt:Entriesinclude_blogs=”children”> website Blog 1 Blog 2 Blog 3
  47. 47. <mt:Entries include_blogs=”children” exclude_blogs=”2”> New in 5.1 website Blog 1 Blog 2 Blog 3
  48. 48. New in 5.1<$mt:Include module="X" parent="1"$> )
  49. 49. <mt:XX trim_to=”5+...” />"N+ " trim_to="5+..." " " " ..."
  50. 50. Thank you !

×