Más contenido relacionado
La actualidad más candente (18)
Similar a TDUCTFの実行基盤 (20)
TDUCTFの実行基盤
- 4. スコアサーバ
• 毎度開発するのは大変 → OSSにしよう
• APIで操作可能なバックエンド → Django
• フロントエンドと完全に分離 → Electron
@nomuken @misodengaku
@mzyy99
@nomuken
- 11. Docker
as of 2015 8/30 11:00
CTF Conpetition Netwrok Service
L3
L2
LXC
endnode
application
Default Gateway
1000M
500M
Virtual Coonection
vlan id
vlan
*CONFIDENTIAL*
Tagged Interface
Untagged Interface
TunnelTunnel
Player Zone Servers Zone
gs908m
172.19.0.0/16
gs908m
172.19.0.0/16
vswitch
172.16.0.0/24
vswitch
172.16.0.0/24
ubuntu
gateway
ubuntu
gateway
rtx1200
venue
rtx1200
venue
unknown
192.168.100.0/24
unknown
192.168.100.0/24
router
61.211.224.129
router
61.211.224.129
vrouter
27.133.136.145
vrouter
27.133.136.145
vswitch
27.133.136.144/28
vswitch
27.133.136.144/28
ubuntu
score
ubuntu
score
ubuntu
watch
ubuntu
watch
Admin Zone
tductf2015tductf2015
tductf2015-admintductf2015-admin
express5800
download
express5800
download
swx2200-8poeswx2200-8poe
100
aironet3502aironet3502
lepuslepus
lepus-demolepus-demo
loglog
zabbixzabbix
dnsmasqdnsmasq
squid3squid3
eth1eth0
LAN2
LAN1
LAN3
eth0
eth0
eth0
eth0
eth0
eth0
eth0
Tunnel1 ipip0
さくらインターネット研究所
6F セミナールーム
eth0
LAN1
172.18.0.0/30 .1
.100 .110
.157
.158
.254
.145
.2
.1
.10
.132
.129
172.19.1.0/29
27.133.136.145/28
172.19.0.0/24
192.168.100.0/24
172.16.0.0/24
- 20. Docker
as of 2015 8/30 11:00
CTF Conpetition Netwrok Service
L3
L2
LXC
endnode
application
Default Gateway
1000M
500M
Virtual Coonection
vlan id
vlan
*CONFIDENTIAL*
Tagged Interface
Untagged Interface
TunnelTunnel
Player Zone Servers Zone
gs908m
172.19.0.0/16
gs908m
172.19.0.0/16
vswitch
172.16.0.0/24
vswitch
172.16.0.0/24
ubuntu
gateway
ubuntu
gateway
rtx1200
venue
rtx1200
venue
unknown
192.168.100.0/24
unknown
192.168.100.0/24
router
61.211.224.129
router
61.211.224.129
vrouter
27.133.136.145
vrouter
27.133.136.145
vswitch
27.133.136.144/28
vswitch
27.133.136.144/28
ubuntu
score
ubuntu
score
ubuntu
watch
ubuntu
watch
Admin Zone
tductf2015tductf2015
tductf2015-admintductf2015-admin
express5800
download
express5800
download
swx2200-8poeswx2200-8poe
100
aironet3502aironet3502
lepuslepus
lepus-demolepus-demo
loglog
zabbixzabbix
dnsmasqdnsmasq
squid3squid3
eth1eth0
LAN2
LAN1
LAN3
eth0
eth0
eth0
eth0
eth0
eth0
eth0
Tunnel1 ipip0
さくらインターネット研究所
6F セミナールーム
eth0
LAN1
172.18.0.0/30 .1
.100 .110
.157
.158
.254
.145
.2
.1
.10
.132
.129
172.19.1.0/29
27.133.136.145/28
172.19.0.0/24
192.168.100.0/24
172.16.0.0/24
脆弱性のあるコンテナからの攻撃
SSH等問題以外への攻撃
- 21. Docker
as of 2015 8/30 11:00
CTF Conpetition Netwrok Service
L3
L2
LXC
endnode
application
Default Gateway
1000M
500M
Virtual Coonection
vlan id
vlan
*CONFIDENTIAL*
Tagged Interface
Untagged Interface
TunnelTunnel
Player Zone Servers Zone
gs908m
172.19.0.0/16
gs908m
172.19.0.0/16
vswitch
172.16.0.0/24
vswitch
172.16.0.0/24
ubuntu
gateway
ubuntu
gateway
rtx1200
venue
rtx1200
venue
unknown
192.168.100.0/24
unknown
192.168.100.0/24
router
61.211.224.129
router
61.211.224.129
vrouter
27.133.136.145
vrouter
27.133.136.145
vswitch
27.133.136.144/28
vswitch
27.133.136.144/28
ubuntu
score
ubuntu
score
ubuntu
watch
ubuntu
watch
Admin Zone
tductf2015tductf2015
tductf2015-admintductf2015-admin
express5800
download
express5800
download
swx2200-8poeswx2200-8poe
100
aironet3502aironet3502
lepuslepus
lepus-demolepus-demo
loglog
zabbixzabbix
dnsmasqdnsmasq
squid3squid3
eth1eth0
LAN2
LAN1
LAN3
eth0
eth0
eth0
eth0
eth0
eth0
eth0
Tunnel1 ipip0
さくらインターネット研究所
6F セミナールーム
eth0
LAN1
172.18.0.0/30 .1
.100 .110
.157
.158
.254
.145
.2
.1
.10
.132
.129
172.19.1.0/29
27.133.136.145/28
172.19.0.0/24
192.168.100.0/24
172.16.0.0/24