Upgrade to Pro — share decks privately, control downloads, hide ads and more …

脆弱性管理サービス Veetaをリリースした

Kazuhiko Yamashita
November 09, 2017
2.2k

脆弱性管理サービス Veetaをリリースした

第10回ペパボテックカンファレンス~インフラエンジニアがもっとおもしろくできる!~

Kazuhiko Yamashita

November 09, 2017
Tweet

Transcript

  1. ʙΘʔʔʔʂʂࠓ೔࠙਌ձ౜༲͛͋Δ͡ΌΜʂʂ࠷ߴ͡ΌΜʂʂʂฤʙ
    !QZBNB(.01FQBCP *OD
    ϖύϘςοΫΧϯϑΝϨϯεɹΠϯϑϥΤϯδχΞ͕΋ͬͱ͓΋͠Ζ͘Ͱ͖Δ
    ੬ऑੑ؅ཧαʔϏε
    7FFUBΛϦϦʔεͨ͠

    View Slide

  2. ΤϯδχΞ
    ࢁԼ࿨඙!QZBNB
    ϗεςΟϯάࣄۀ෦νʔϑςοΫϦʔυ
    IUUQTUFOTOBQPODPN

    View Slide

  3. -JOVYͷ౷߹Ϣʔβʔ؅ཧ
    50.-ܗࣜ
    )551+40/
    -%"1΍%#ͷ؅ཧͷӡ༻ෛՙ
    ѻ͍΍͍͢ϑΥʔϚοτ
    ൚༻ੑɾ֦ுੑ

    View Slide

  4. WFFUBPSH
    αʔόύοέʔδͷ
    ੬ऑੑ؅ཧαʔϏε

    View Slide

  5. WPM
    NSVCZͰ࣮ݱ͢Δ
    ҰาਐΜͩΠϯϑϥӡ༻

    View Slide

  6. 7FFUB
    JT
    -JOVYͷύοέʔδ੬ऑੑ؅ཧαʔϏε
    IUUQTXXXWFFUBUFDI

    View Slide

  7. View Slide

  8. 7FFUBͰग़དྷΔ͜ͱ
    wαʔόʹΠϯετʔϧ͞Εͨύοέʔδ৘ใͷநग़ɺݕࡧ
    wύοέʔδͷ੬ऑੑͷநग़ɺݕࡧ
    w੬ऑੑ৘ใͷӾཡ
    w੬ऑੑใࠂͷແࢹ
    w੬ऑੑൃݟ௨஌

    View Slide

  9. ΞʔΩςΫνϟ
    7FFUB
    7B[
    $7& /7% +7/
    ύοέʔδ৘ใͷ௨஌
    ύοέʔδ৘ใεΩϟϯ
    ਓྨ
    Ϩϙʔτ
    8ͰӾཡ

    View Slide

  10. ؅ཧ୯Ґ
    0SHBOJ[BUJPO
    4FSWJDF
    IPTU IPTU IPTU
    4FSWJDF
    IPTU IPTU IPTU
    Ξϥʔτ΍$7&ͷ؅ཧ৘ใ͸0SHBOJ[BUJPO 4FSWJDF )PTU୯ҐͰ؅ཧՄೳ

    View Slide

  11. σϞ

    View Slide

  12. ٕज़ελοΫ

    View Slide

  13. ՝୊ײ

    View Slide

  14. ςΫχΧϧϦʔυͱͯ͠

    View Slide

  15. αʔόͷ੬ऑੑ؅ཧͷলྗԽ

    View Slide

  16. View Slide

  17. 7VMT
    wΤʔδΣϯτϨε
    w044͔ͭɺ࡞ऀ͕೔ຊਓ
    w44)΋͘͠͸ϩʔΧϧͰεΩϟϯΛߦ͍ɺ݁ՌΛ+40/ϑΝΠϧʹग़ྗ
    w4MBDLͳͲͷ௨஌࿈ܞ

    View Slide

  18. ςΫχΧϧϦʔυͱͯ͠
    wαʔόͷ੬ऑੑ؅ཧͷলྗԽ
    7VMTͷಋೖˠΤʔδΣϯτϨε͕ෳ਺αʔϏεɺઍେن໛Ͱαʔόӡ༻Λ
    ߦ͍ͬͯΔϖύϘʹϚον͠ͳ͔ͬͨ
    IUUQTTQFBLFSEFDLDPNQZBNBWVMTYTUOTEFTIJNFSVDVJSVPYJOHKJBO[IJGBMTF[JEPOHIVB
    7VMTº45/4Ͱਓྨ͕޾ͤʹͳΕΔͱ
    ৴ͯٙ͡Θͳ͔ͬͨظ

    View Slide

  19. ͦ͏ɺԶୡ͸΋͏ΤʔδΣϯτͳ͠Ͱ͸
    ੜ͖͍͚ͯͳ͍ମʹͳͬͪ·ͬͨ

    View Slide

  20. 7VMTΤʔδΣϯτ4BB4
    wΤʔδΣϯτϨεͳઃܭ͔ΒΤʔδΣϯτܗࣜରԠ΁ͷύϫʔϓϨΠ
    wDVSSFOU഑Լͷ+40/Λ1BSTFͯ͠1045
    wґଘύοέʔδͷଟ͞

    View Slide

  21. 7VMT
    7B[
    7FFUB

    View Slide

  22. ΤϯδχΞ
    ͱͯ͠

    View Slide

  23. ΤϯδχΞͱͯ͠
    wϖύϘͷΠϯϑϥࣄ৘
    wࣗ෼ͷαʔϏεΛ࣋ͭ͜ͱ

    View Slide

  24. ϖύϘͷΠϯϑϥࣄ৘
    wαʔϏεΠϯϑϥ͸0QFO4UBDLΛ࠾༻
    w෺ཧαʔό୆
    wԾ૝αʔό୆
    IUUQTTQFBLFSEFDLDPNQZBNBQFQBCPOJPLFSVPQFOTUBDLIBDLT

    View Slide

  25. ϖύϘͷΠϯϑϥࣄ৘

    View Slide

  26. ༏Ε͍ͯΔͱ͍͏͜
    ͱ͸ଞͱͷൺֱʹΑͬ
    ͯৢ੒͞ΕΔ

    View Slide

  27. ࣗ෼ͷαʔϏε
    w୅දతαʔϏε
    wࣗݾֶशج൫

    View Slide

  28. ࠓޙͷ΍͍͖ͬͯ

    View Slide

  29. ࠓޙͷ΍͍͖ͬͯ
    wݕ஌ਫ਼౓ͷ޲্
    w69޲্
    wػցֶशɾ౷ܭ
    wNBDLFSFMQMVHJOWFFUB

    View Slide

  30. ݕ஌ਫ਼౓ͷ޲্
    w0QFO4$"1ରԠ
    wιʔεΠϯετʔϧରԠ

    View Slide

  31. 69޲্

    View Slide

  32. ػցֶशɾ౷ܭ
    wύοέʔδͷ੬ऑੑ৘ใ
    wରԠͷඞཁՄ൱
    wରԠͷαδΣετ

    View Slide

  33. NBDLFSFMQMVHJOWFFUB
    [plugin.checks.veeta]
    command = “/usr/bin/mackerel-plugin-veeta -token xxxx

    -service example”

    View Slide

  34. 2༗ྉԽͷ༧ఆ͸ʁ

    View Slide

  35. ·ͱΊ

    View Slide

  36. ੬ऑੑ؅ཧ͸ָʹ͍ͯ͘͠
    1.

    View Slide

  37. ࣗ෼ͷܧଓత੒௕ͷͨΊʹ
    αʔϏεΛӡ༻͢Δ
    2.

    View Slide

  38. ΠϯϑϥΤϯδχΞ΋೤ҙ͑͋͞Ε͹
    αʔϏε࡞ΕΔ
    3.

    View Slide

  39. ϑΟʔυόοΫ͓଴͍ͪͯ͠·͢
    ࠷৽ͷ࠾༻৘ใΛνΣοΫˠ !QC@SFDSVJU

    View Slide