-----BEGIN PGP SIGNED MESSAGE-----

======================================================================
                                                   JPCERT-ED-2002-0001
                                                             JPCERT/CC

$B5;=Q%a%b(B  - $B4X78%5%$%H$H$N>pJs8r49(B

$B=i(B    $BHG(B: 1999-11-17  (Ver.01: JPCERT-E-TEC-99-0001-01)
$BH/(B $B9T(B $BF|(B: 2005-04-01  (Ver.05)
$B:G?7>pJs(B: http://www.jpcert.or.jp/ed/2002/ed020001.txt
======================================================================

  $B0lHLE*$K!"%$%s%?!<%M%C%H$K@\B3$5$l$?%7%9%F%`$N1?MQ$K:]$7$F$O!"%;%-%e(B
$B%j%F%#>e$NLdBj$H$7$FB*$($i$l$k;v>]$,H/@8$9$k2DG=@-$,$"$j$^$9!#$3$N$h$&(B
$B$J;v>](B ($B%3%s%T%e!<%?%;%-%e%j%F%#%$%s%7%G%s%H!"0J2<%$%s%7%G%s%H(B) $B$NE57?(B
$BE*$JNc$H$7$F$O!"?/F~!"%5!<%S%9K832!"GK2u!"%G!<%?$NEpMQ$d!"$=$l$i$N=`Hw(B
$BCJ3,$H?dB,$5$l$k%"%/%;%9!"$=$N$[$+B>%5%$%H(B/$B%7%9%F%`$+$i$N860xITL@$N%"(B
$B%/%;%9Ey!9$,5s$2$i$l$^$9!#(B

  $B%$%s%7%G%s%H$,H/@8$7$?>l9g$K$O!"860x$NFCDj!"3HBg$NKI;_!":FH/$NKI;_Ey(B
$B$NL\E*$K$h$j!"%"%/%;%9$K4X78$7$?3F%5%$%H$N4IM}<T$KO"Mm$r9T$J$$!">pJsDs(B
$B6!!">pJs8r49$r9T$J$&$3$H$,K>$^$7$$>l9g$,$"$j$^$9!#$7$+$70lJ}$G!"B>$N%5(B
$B%$%H$KO"Mm$r9T$J$&$3$H$K$O<o!9$N%j%9%/$,H<$J$&$?$a!"?5=E$JG[N8$,K>$^$l(B
$B$^$9!#(B

  $BK\J8=q$G$O!"4X78%5%$%H$H$N>pJs8r49$NL\E*!">pJs8r49$KH<$J$&%j%9%/$H2s(B
$BHr:v!"O"Mm@h$N7hDjJ}K!!"5Z$SO"Mm$9$Y$->pJs$K$D$$$F@bL@$7$^$9!#$^$?!";2(B
$B9M;qNA(B [1] $B$b$4;2>H2<$5$$!#(B


I. $B>pJs8r49$NL\E*(B

(1) $BD4::$N0MMj(B

  $BIT?3$J%"%/%;%9$K$D$$$F!"%$%s%7%G%s%H$H$7$FBP=h$9$k>l9g$G$"$C$F$b!"$=(B
$B$N%"%/%;%9$OI,$:$7$b0U?^E*$J967b$H$O8B$j$^$;$s!#0lHLE*$K$O!"%"%/%;%985(B
$B%7%9%F%`$N%=%U%H%&%'%"$d%7%9%F%`@_DjEy$K4^$^$l$k8m$j!"2?$i$+$NA`:n%_%9(B
$B$d>c32Ey$G$"$k2DG=@-$,9M$($i$l$^$9!#(B

  $B$^$?!"%"%/%;%985$N%7%9%F%`$,!"?/F~$d%"%+%&%s%HEpMQEy$K$h$j30It$+$i0-(B
$BMQ$5$l$?$j!"$"$k$$$O!"%H%m%$$NLZGO$d%3%s%T%e!<%?%&%#%k%9Ey$N1F6A$r<u$1(B
$B$?$j$7$?7k2L!"IT?3$J%"%/%;%9$,9T$J$o$l$?2DG=@-$b9M$($i$l$^$9!#(B

  $B$=$3$G!"$^$:$OLdBj$H$J$k%"%/%;%9$K$D$$$F!"@hJ}(B ($B%"%/%;%985(B) $B$K;v<B4X(B
$B78$N3NG'$r0MMj$9$k$3$H$,@h7h$G$9!#(B

(2) $B%$%s%7%G%s%H$N2r7h!"3HBgKI;_(B

  $B3F4X78%5%$%H$N4IM}<T$NCm0U$r4-5/$9$k$3$H$O!"%$%s%7%G%s%H$N2r7h$d3HBg(B
$BKI;_$K$D$J$,$j$^$9!#(B

  $BNc$($P!"30It$+$i$N%"%/%;%9$r4^$`%$%s%7%G%s%H$G$"$C$?>l9g$K$O!"0lHLE*(B
$B$J2r7h:v$H$7$F!"%"%/%;%985%7%9%F%`$K$*$1$k860x$NFCDj$H:FH/$NKI;_$,K>$^(B
$B$l$^$9!#FC$K!"%"%/%;%985%7%9%F%`<+BN$,0-MQ$5$l$F$$$?>l9g$K$O!"$=$l$rJ|(B
$BCV$9$k$H!"<+%5%$%H$X$N%"%/%;%9$,7QB3$9$k2DG=@-$d!"$5$i$KB>$N%5%$%H$X$N(B
$B%$%s%7%G%s%H$N3HBg$r>7$/2DG=@-$b9M$($i$l$^$9!#@Q6KE*$KLdBj$N=j:_$H>u67(B
$BFbMF$rEA$(!"@hJ}$ND4::$HBP1~$rB%$9$3$H$,!"%$%s%7%G%s%H$NB.$d$+$J2r7h!"(B
$B3HBgKI;_$X$D$J$,$k$H4|BT$5$l$^$9!#(B

  $B0lJ}$G!"<+%5%$%H$N%7%9%F%`$,30It$X$N967b$K0-MQ$5$l$F$$$?>l9g$K$O!"<+(B
$B%5%$%H$K$FBP:v$r<B;\$7$?8e$b!"0z$-B3$-!"$=$N%"%/%;%9@h%5%$%H$X$N967b$,(B
($BBh;0$N%5%$%H$r2p$7$F(B) $B9T$J$o$l$k2DG=@-$,$"$j$^$9!#$3$N>l9g$K$O!"%"%/(B
$B%;%9@h%5%$%H$KBP$7$F%"%/%;%9$N;v<B$rEA$(!"@hJ}$NBP1~!"BP:v$rB%$9$3$H$,(B
$BK>$^$l$^$9!#(B

  $B?M0YE*$J%$%s%7%G%s%H$rJ|CV$7$F$*$/$H!">-Mh$$$:$l$+$N%5%$%H$N%7%9%F%`(B
$B$,F'$_Bf$H$7$F0-MQ$5$l!"<+%5%$%H$d<+%5%$%H$H4X78$N$"$k%5%$%H$X$N967b$K(B
$B$D$J$,$k2DG=@-$bH]Dj$G$-$^$;$s!#%$%s%?!<%M%C%HA4BN$N1_3j$J1?MQ$N$?$a!"(B
$B3F4X78%5%$%H$HE,@Z$J>pJs8r49$r9T$J$$!"%$%s%7%G%s%H$N2r7h$r?^$k$3$H$,K>(B
$B$^$l$^$9!#(B

(3) $B:FH/KI;_:v$N8!F$(B

  $B3F4X78%5%$%H$KO"Mm$r9T$J$&$3$H$K$h$j!"<+%5%$%H$@$1$G$OF~<j$G$-$J$$>p(B
$BJs$NDs6!$r<u$1$i$l$k2DG=@-$,$"$j$^$9!#(B

  $BNc$($P!"?/F~$r<u$1$?7k2L!"<+%5%$%H$N>pJs$,GK2u$d2~$6$s$r<u$1$?$H$7$F(B
$B$b!"$$$:$l$+$N%5%$%H$G>pJs$,3NJ]$5$l$F$$$l$P!"$=$l$r85$K?/F~$r<u$1$k86(B
$B0x$H$J$C$?<eE@$r?dB,$G$-$k2DG=@-$,$"$j$^$9!#(B

  $B$^$?!"L$CN$N<eE@$,967b$5$l$?>l9g!"%W%m%@%/%H$N3+H/85Ey$KO"Mm$9$k$3$H(B
$B$K$h$j!"<eE@$r=|$/$?$a$N2~A1$K4sM?$G$-$k>l9g$b$"$j$^$9!#(B


II. $B>pJs8r49$KH<$J$&%j%9%/(B

  $B$7$+$7$J$,$i!"%$%s%7%G%s%H$K4X$9$k>pJs8r49$O!"$=$l<+BN%j%9%/$rH<$J$$(B
$B$^$9!#E57?E*$J%j%9%/$H$7$F$O!"Nc$($P0J2<$N$b$N$,9M$($i$l$^$9!#(B

(1) $BEpD0!"2~$6$s!"K832(B

  $BO"MmFbMF$NEpD0$d2~$6$s!"K832$,9T$J$o$l$k2DG=@-$,$"$j$^$9!#FC$KO"Mm@h(B
$B%5%$%H$dDL?.7PO)$,?/F~Ey$N1F6A2<$K$"$k>l9g$K$*$$$F$OCm0U$,I,MW$G$9!#(B

(2) $B>pJs$NO31H!"0-MQ(B

  $B<+%5%$%H$K$+$+$o$k%$%s%7%G%s%H$K$D$$$F!"30It$KCN$i$;$k$3$H$K$J$j$^$9!#(B
$B$=$3$GCN$i$;$?>pJs$O!"Aw?.<T$N4|BT$9$k$h$&$K<h$j07$o$l$k$H$O8B$j$^$;$s!#(B
$B@hJ}$K$*$$$F%$%s%7%G%s%H$,H/@8$7$?7k2L!"Bh;0<T$KO31H$9$k2DG=@-$b9M$($i(B
$B$l$^$9!#:G0-$N>l9g$K$O!"<+%5%$%H$NC4Ev<T$rBP>]$H$7$?>pJs$N:><h$d!"$=$N(B
$BB>$N%"%?%C%/$N;29M>pJs$H$7$F0-MQ$5$l$k$*$=$l$b$"$j$^$9!#(B

  $BFC$K!"<+%5%$%H$,967b$r<u$10lDj$N1F6A$rHo$C$F$$$k>l9g$d!"<+%5%$%H$,96(B
$B7b85$H$7$F30It$+$i0-MQ$5$l$F$$$k>l9g$K$O!"$=$N;v<B$r0-MQ$5$l$k%j%9%/$O(B
$B9b$$$H9M$($i$l$^$9!#(B

(3) $B;v<B4X78$N8mG'(B

  $B?/F~Ey$N7k2L$H$7$F!"O"MmFbMF$N85$H$J$k>pJs$,4{$K56B$$d2~$6$s$r<u$1$F(B
$B$$$k2DG=@-$,$"$j$^$9!#Nc$($P!"(BIP $B%"%I%l%9$N56B$$d(B DNS $B$N56B$$rH<$J$&%$(B
$B%s%7%G%s%H$K$*$$$F$O!"0l8+$7$F%"%/%;%985$H;W$o$l$k%5%$%H$G$"$C$F$b!"<B(B
$B$O%"%/%;%9$K4XM?$7$F$$$J$$2DG=@-$,$"$j$^$9!#(B

  $B$^$?!"0l8+$7$F<+%5%$%H$X$N967b$H;W$o$l$k%"%/%;%9$G$"$C$F$b!"A`:n%_%9(B
$B$d6vH/E*$J;v8N$r5/0x$H$9$k>l9g$,$"$j$^$9!#$b$7$/$O!"@hJ}$N%7%9%F%`$,96(B
$B7b$d?/F~$r<u$1!"0-MQ$5$l$F$$$k2DG=@-$b$"$j$^$9!#(B

  $B$3$N$h$&$J>l9g!"%$%s%7%G%s%H$N1_3j$J2r7h$,AK32$5$l$?$j!"@hJ}$H$N4V$N(B
$BJ6Ah$r>7$/$*$=$l$,$"$j$^$9!#(B

(4) $BO"Mm@h$NIT:_!"8mG'(B

  $BO"Mm@h$O!"479T$d8x3+>pJs$K4p$-7hDj$9$k$3$H$K$J$j$^$9!#%$%s%?!<%M%C%H(B
$B@\B3%5%$%H$X$NO"Mm<jCJ$H$7$F$OEE;R%a!<%k$,0lHLE*$G$9$,!"I,$:$7$b$"$k%"(B
$B%I%l%9$K08$F$?%a!<%k$O4|BT$9$kIQEY$GFI$^$l$k$H$O8B$j$^$;$s!#(B

  $B$^$?!"O"Mm@h$O!"0lHLE*$K$O!"%3%s%T%e!<%?%;%-%e%j%F%#%$%s%7%G%s%H$K4X(B
$B$9$kC4Ev<T$G$J$$$H9M$($i$l$^$9!#Nc$($P!"O"Mm@h%5%$%H$,@\B3$7$F$$$k%W%m(B
$B%P%$%@(B($B$NC4Ev<T(B)$B$d!"O"Mm@h%5%$%H$N6HL3$r@A$1Ii$C$F$$$k%5%$%H(B($B$NC4Ev<T(B)
$B$K$D$$$F$N>pJs$,EPO?$5$l$F$$$k>l9g$,$"$j$^$9!#;~$K$O!"%$%s%?!<%M%C%H@\(B
$BB3;~$N30Cm@h$G$"$C$?$j!"B`?&Ey$K$h$j4{$K@hJ}$N%5%$%H$+$i5n$C$??M4V$G$"(B
$B$k>l9g$b$"$j$^$9!#(B

  $B$3$N$h$&$J>l9g$K$O!"BP1~$NCY1d!">pJs$N0.$jDY$7!">pJs$NO31H!"2~$6$s$r(B
$B>7$/2DG=@-$,$"$j$^$9!#(B

(5) $B5=bV>pJs(B

  $B30It$+$i%$%s%7%G%s%H>pJs$,Ds6!$5$l$?>l9g!"0-0U$K4p$/5=bV>pJs$G$"$k2D(B
$BG=@-$,$"$j$^$9!#5U$K!"<+$i$,Ds6!$7$?>pJs$,!"$=$N$h$&$J0-0U$K4p$/$b$N$G(B
$B$"$k$H<u$1<h$i$l$k%j%9%/$b9M$($i$l$^$9!#(B


III. $B%j%9%/$N2sHr:v(B

(1) $BJ#?t$NO"Mm<jCJ$NJ;MQ(B

  $B%$%s%?!<%M%C%H@\B3%5%$%H$X$NO"Mm<jCJ$H$7$F$OEE;R%a!<%k$,0lHLE*$G$9$,!"(B
$B?/F~Ey$K$h$k1F6A$,9M$($i$l$k>l9g$K$O!"B>$NO"Mm<jCJ$bJ;MQ$7$^$9!#$3$l$K(B
$B$h$j!"O"MmFbMF$N2~$6$s$dK832$K$h$k1F6A$r$"$kDxEY2sHr$9$k$3$H$,$G$-$^$9!#(B

(2) $BJ#?t$NO"Mm@h$X$NO"Mm(B

  $BJ#?t$N08@h$KBP$7$FO"Mm$r;n$_$^$9!#8DJL$NO"Mm@h$K4X$9$k%j%9%/$r7Z8:$9(B
$B$k$3$H$O2DG=$G$9$,!"0lJ}$G!">pJs$NO31H$H$$$&0UL#$G$N%j%9%/$OA}2C$7$^$9!#(B
$B$^$?!"J#?t$N<u?.<T$NC/$,07$&$Y$-$+$,@hJ}$K$*$$$FITL@NF$K$J$j!"@hJ}$NBP(B
$B1~$,CY$l$k$H$$$&2DG=@-$bH]Dj$G$-$^$;$s!#(B

(3) $B0E9f5;=Q$NMxMQ(B

  $B?.Mj$G$-$k80$,MxMQ2DG=$J>l9g$K$O!"0E9f$d%G%8%?%k=pL>$rMxMQ$9$k$3$H$K(B
$B$h$j!"EpD0$d2~$6$s$rKI;_$9$k$3$H$,$G$-$^$9!#(B

(4) $B>pJs3+<($NFbMF(B

  $B4{$K<+%5%$%H$N>pJs4IM}(B ($B5!L)4IM}(B) $B%]%j%7!<$,$"$k>l9g$O!"$=$N%]%j%7!<(B
$B$K=>$C$FFbMF$dHO0O!"J}K!$rH=CG$7$^$9!#O"MmFbMF$N0-MQ$r2sHr$9$k$?$a$K$O!"(B
$BBh0lJs$K$*$$$F$O:G>.8B$N>pJs$@$1$r3+<($7!"@hJ}$NH?1~$r8+$F:#8e$N>pJs$N(B
$B3+<($r8!F$$9$k$3$H$b9M$($i$l$^$9!#(B

(5) $BI=8=(B

  $B>u67$K$D$$$F$O!"2DG=$J8B$jCGDjE*$J8@$$2s$7$rHr$1!"2DG=@-$H$7$F$N;XE&(B
$B$K$H$I$a$k$3$H$,9M$($i$l$^$9!#Bh0lJs$G$O!";v<B4X78$N3NG'$HCm0U$N4-5/$r(B
$BCf?4$H$7!"$=$NB>$N%j%/%(%9%H$O!"K|$,0l;v<B$G$"$C$?>l9g$K!"$H$$$&;Q@*$G(B
$B=R$Y$k$3$H$b9M$($i$l$^$9!#(B

(6) CSIRT $B$X$NO"Mm(B

  $B<+%5%$%H$b$7$/$OO"Mm@h%5%$%H$N$$$:$l$+$rBP>]$H$7$?%5!<%S%9$r9T$J$C$F(B
$B$$$k(B CSIRT (CSIRT: Computer Security Incident Response Team, $B%3%s%T%e!<(B
$B%?%;%-%e%j%F%#%$%s%7%G%s%HBP1~%A!<%`(B) $B$KO"Mm$7!"$"$i$+$8$a=u8@$r<u$1$k(B
$B$3$H$,9M$($i$l$^$9!#$b$7$/$O!"EE;R%a!<%k$K$FO"Mm$r9T$J$&>l9g$K(B CSIRT $B$N(B
$BO"Mm@h$r(B Cc: $B$K4^$`$3$H$b9M$($i$l$^$9!#(B

  CSIRT $B$O!";v<B$NJ,@O$d!"$=$NB>%$%s%7%G%s%HBP1~A4HL$K$D$$$F!"%N%&%O%&(B
$B$dCN<1$rM-$7$F$*$j!";v<B4X78$N8mG'$K$h$j@8$8$k%j%9%/$N7Z8:$K$D$J$,$j$^(B
$B$9!#$^$?!"<+%5%$%H$,FC$K(B CSIRT $B$N;Y1g$rI,MW$H$7$F$$$J$/$H$b!"@hJ}$K$H$C(B
$B$F(B CSIRT $B$+$i$N=u8@$,M-1W$G$"$k2DG=@-$b$"$j$^$9!#(B

(7) CSIRT $B$r2p$7$?O"Mm(B

  $BO"Mm@h%5%$%H$KD>@\O"Mm$r9T$J$&Be$o$j$K!"(BCSIRT $B$KO"Mm$7!"O"Mm$rCg2p$7(B
$B$F$b$i$&$3$H$,9M$($i$l$^$9!#(B

  $B0lHLE*$K!"(BCSIRT $B$O>pJsDs6!<T$N4uK>$7$J$$>pJs3+<($r9T$J$o$J$$$h$&$KG[(B
$BN8$7!"I,MW$K1~$8$F>pJs$N%U%#%k%?%j%s%0$r9T$J$C$F$$$k$?$a!"O"MmFbMF$K4X(B
$B$9$k%j%9%/$r$"$kDxEY2sHr$9$k$3$H$,2DG=$G$9!#$^$?!"(BCSIRT $B$O%5%$%H$X$NO"(B
$BMmJ}K!$K$D$$$F$N%N%&%O%&$dCN<1$rM-$7$F$*$j!";v<B4X78$N8mG'$K$h$j@8$8$k(B
$B%j%9%/$N7Z8:$K$D$J$,$j$^$9!#(B

  $B$3$N>l9g$K$O!"(BCSIRT $B$KBP$7$F$OI,MW$J>pJs$r3+<($9$k$H$H$b$K!"(BCSIRT $B$+(B
$B$iO"Mm@h$KO"Mm$9$k:]$N>pJs$N3+<(>r7o$rL@<($9$k$3$H$r?d>)$7$^$9!#(B

  $B$J$*!"3F(B CSIRT $B$O3F!9FH<+$N!"%5!<%S%9FbMF!"BP1~%]%j%7!<!"$*$h$SJs9p(B
$B%U%)!<%`$r:NMQ$7$F$$$^$9!#O"Mm$N:]$K$O!";vA0$K3FAH?%$N(B Web $BEy$K$F8x3+(B
$B$5$l$F$$$k>pJs$r3NG'$9$k$3$H$r?d>)$7$^$9!#(B

(8) $B%]%j%7!<$N:vDj$H=e<i(B

  $BA[Dj$9$k%$%s%7%G%s%H$NFbMF$d1F6A$NDxEYKh$K!"I8=`E*$JBP1~$r;vA0$K8!F$(B
$B$7!"%]%j%7!<$H$7$F$^$H$a$F$*$/$3$H$,9M$($i$l$^$9(B ($B>D300lHL$K4X$7$F=t5,(B
$BDj!"6HL3<j=gEy$,4{$K:vDj$5$l$F$$$k>l9g$K$O!"$=$l$i$H$N@09g@-$KCm0U$,I,(B
$BMW$G$9(B)$B!#(B $B<B:]$K4X78%5%$%H$KO"Mm$9$k>l9g$K$O!"%]%j%7!<$r;2>H$7!"=e<i$9(B
$B$k$h$&$K$7$^$9!#(B


IV. $BO"Mm@h$N7hDj(B

(1) $B%5%$%H$XD>@\O"Mm$9$k>l9g(B

  $B%5%$%H$XD>@\O"Mm$9$k>l9g$K;HMQ$G$-$kO"Mm@h$H$7$F$O!"$*$*$`$M0J2<$NO"(B
$BMm@h$,9M$($i$l$^$9!#(B

    (a) $B%$%s%?!<%M%C%H%l%8%9%H%j$KEPO?$5$l$F$$$kO"Mm@h(B
    (b) $B%[%9%H$^$?$O%I%a%$%s$r4IM}$9$k%]%9%H%^%9%?(B (postmaster@$B!A(B)
    (c) RFC 2142 $B$G>R2p$5$l$F$$$k%a!<%k%"%I%l%9(B (ABUSE, NOC, SECURITY $BEy(B)
    (d) $B%[%9%H$N4IM}MQ%"%+%&%s%H(B (root@$B!A(B, Administrator@$B!A(B $BEy(B)
    (e) DNS $B$N(B SOA $B%l%3!<%I$KEPO?$5$l$?%a!<%k%"%I%l%9(B

  $B$$$:$l$NO"Mm@h$K$D$$$F$b!"Bh(B II $B>O$G=R$Y$?$h$&$K!"FI$^$l$F$$$J$$!"%a!<(B
$B%kCe?.$N@_Dj$,$5$l$F$$$J$$!"Ev3:%5%$%H$N%;%-%e%j%F%#4IM}<T$G$O$J$$!"B`(B
$B?&<T$G$"$k!"Ey!9$N2DG=@-$,9M$($i$l$k$?$a!"J8LL$dFbMF$KG[N8$,I,MW$G$9!#(B

    a) $B%$%s%?!<%M%C%H%l%8%9%H%j$KEPO?$5$l$F$$$kO"Mm@h(B

        $B%$%s%?!<%M%C%H%l%8%9%H%j(B (NIC $B5!4XEy(B) $B$,8x3+$9$k8!:w%5!<%S%9$r(B
        $BMQ$$$F(B IP $B%"%I%l%93d$jEv$F>pJs$J$$$7%I%a%$%s>pJs!"7PO)>pJsEy$r(B
        $B8!:w$7$^$9!#$=$3$KEPO?$5$l$F$$$k%a!<%k%"%I%l%9!"EEOCHV9f!"(BFAX
        $BHV9f$KO"Mm$9$k$3$H$,9M$($i$l$^$9!#(B

        $B$3$N$H$-!"%5%$%H$N%3%s%?%/%H>pJs$N$[$+$K!"%G!<%?$N99?7$K$D$$$F(B
        $BDLCN$5$l$k%"%I%l%9$d!":G=*99?7$r9T$J$C$?C4Ev<T$N%a!<%k%"%I%l%9(B
        $B$,IU?o$9$k$3$H$,$"$j$^$9!#DLCN%"%I%l%9$d:G=*99?7<T$O!"%5%$%H$N(B
        $BC4Ev<T0J30$K$b!">eN.(B ISP $B$NC4Ev<TEy$N%"%I%l%9$,5-:\$5$l$F$$$k(B
        $B>l9g$bB?$/8+<u$1$i$l$^$9$N$G!"Cm0U$,I,MW$G$9!#(B

        $B$J$*!"8!:w$N7k2LF@$i$l$k>pJs$O!"3F5!4X$,MxMQ$NL\E*$rDj$a$F$$$k(B
        $B>l9g$,$"$j$^$9$N$GCm0U$,I,MW$G$9!#(B

    a-1) IP $B%"%I%l%9!"%I%a%$%sL>$+$i>pJs$r8!:w$9$kJ}K!(B

        $BF|K\9qFb$G3d$jEv$F$i$l$?(B IP $B%"%I%l%9$*$h$S(B JP $B%I%a%$%s$K$D$$$F(B
        $B$O!"(BJPNIC $B$H(B JPRS $B$,6&F1$G1?MQ$9$k(B WHOIS $B%5!<%S%9$rMxMQ$7$F8!(B
        $B:w$9$k$3$H$,$G$-$^$9!#(B

                http://whois.jp/

        whois.jp $B$O!"8!:w%-!<%o!<%I$H$7$FF~NO$7$?J8;zNs$+$i!"$=$N>pJs(B
        $B$,(B JPNIC $B$N(B Whois $B$+!"(BJPRS $B$N(B Whois $B$N$I$A$i$KEPO?$5$l$F$$$k$b(B
        $B$N$+$r<+F0$GH=JL$7!"3:Ev$9$k(B Whois $B$+$i$N8!:w7k2L$r1~Ez$9$k%5!<(B
        $B%S%9$G$9!#(BJPNIC$B!"(BJPRS $B$N3F%G!<%?%Y!<%9!"3$30%5%$%H$N>pJs$O0J2<(B
        $B$r$4;2>H$/$@$5$$!#(B

    a-2) IP $B%"%I%l%9$+$i>pJs$r8!:w$9$kJ}K!(B

        $BF|K\9qFb$G3d$jEv$F$i$l$?(B IP $B%"%I%l%9$K$D$$$F$O!"(BJPNIC $B$,8x3+$9(B
        $B$k(B JPNIC $B%G!<%?%Y!<%98!:w%5!<%S%9$rMxMQ$7$F8!:w$9$k$3$H$,$G$-(B
        $B$^$9!#(B

                http://www.nic.ad.jp/ja/whois/

        $B3$30$G3d$jEv$F$i$l$?(B IP $B%"%I%l%9$K$D$$$F$O!"(BARIN, RIPE NCC,
        APNIC $B$+$i>pJs$rF~<j$9$k$3$H$,2DG=$G$9!#$^$?!"(BARIN $B%G!<%?%Y!<(B
        $B%9$G$O!"$9$Y$F$N(B IP $B%"%I%l%93d$jEv$F$K$D$$$F2?$i$+$N>pJs$,Ds6!(B
        $B$5$l$F$$$kLOMM$G$9!#(B

                http://www.arin.net/
                http://www.ripe.net/
                http://www.apnic.net/

    a-3) $B%I%a%$%sL>$+$i>pJs$r8!:w$9$kJ}K!(B

        JP $B%I%a%$%s$K$D$$$F$O!"(BJPRS $B$,8x3+$9$k(B JP $B%I%a%$%sL>EPO?>pJs8!(B
        $B:w%5!<%S%9$rMxMQ$7$F8!:w$9$k$3$H$,$G$-$^$9!#(B

                http://whois.jprs.jp/

        $B$=$NB>$N9qL>%3!<%I%H%C%W%l%Y%k%I%a%$%s(B (ccTLD) $B$K$D$$$F$O!"(B
        IANA $B$,Ds6!$9$k%$%s%G%C%/%9$rMxMQ$7$F3F(B ccTLD $B$r4IM}$9$k5!4X$r(B
        $BD4$Y!"$=$N>e$G3F(B ccTLD $B4IM}5!4X$,Ds6!$9$k8!:w<jCJ$rMQ$$$F!"3:(B
        $BEv$9$k%I%a%$%s$NO"Mm@h$r8!:w$7$^$9!#(B

                http://www.iana.org/cctld/cctld-whois.htm

        EDU, NET, ORG, COM $B$N3F0lHL%H%C%W%l%Y%k%I%a%$%s(B (gTLD) $B$K$D$$(B
        $B$F$O!"(BInterNIC $B$+$i>pJs$rF~<j$9$k$3$H$,2DG=$G$9!#(B

                http://www.internic.net/

    b) $B%[%9%H$^$?$O%I%a%$%s$r4IM}$9$k%]%9%H%^%9%?(B (postmaster@$B!A(B)

        $B%$%s%?!<%M%C%HI8=`$K=`5r$7$?%a!<%kG[Aw%7%9%F%`$r1?MQ$7$F$$$k%[(B
        $B%9%H$KBP$7$F$O!"(Bpostmaster@$B!A(B $B08$F$N%a!<%k$OAwC#2DG=$G$"$k$H4|(B
        $BBT$G$-$^$9$,!"I,$:$7$b%*%Z%l!<%?$,Ev3:%"%I%l%9$X$NCe?.$r3NG'$7(B
        $B$F$$$k$H$O8B$i$J$$$?$a!"Cm0U$,I,MW$G$9!#(B

    c) RFC 2142 $B$G>R2p$5$l$F$$$k%a!<%k%"%I%l%9(B

        RFC 2142 "Mailbox Names for Common Services, Roles and
        Functions" $B$K$F>R2p$5$l$F$$$k!"(BABUSE, NOC $B$J$$$7(B SECURITY $B$N$h(B
        $B$&$J%a!<%k%"%I%l%9$KO"Mm$G$-$k>l9g$b$"$j$^$9!#$?$@$7!"I,$:$7$b(B
        $B$9$Y$F$N%5%$%H$,(B RFC 2142 $B$K=`5r$7$?%"%I%l%9$r@_Dj$7$F$$$k$H$O(B
        $B8B$j$^$;$s!#$7$+$7$J$,$i!"$3$l$i$N%"%I%l%9$,@_Dj$5$l$F$$$k%5%$(B
        $B%H$K$D$$$F$O!"C4Ev<T$,3d$jEv$F$i$l!"0lDj0J>e$NIQEY$G%a!<%k%\%C(B
        $B%/%9$,;2>H$5$l$k$3$H$,4|BT$G$-$^$9!#(B

    d) $B%[%9%H$N4IM}MQ%"%+%&%s%H(B (root@$B!A(B, Administrator@$B!A(B $BEy(B)

        $B$3$N$h$&$J%"%+%&%s%H08$F$KFO$/%a!<%k$K$D$$$FG[N8$7$F$$$J$$%5%$(B
        $B%H$NB8:_$bM=A[$5$l$^$9!#%a!<%k$,AwC#2DG=$G$"$C$F$b!"I,$:$7$b%*(B
        $B%Z%l!<%?$,Ev3:%"%I%l%9$X$NCe?.$r3NG'$7$F$$$k$H$O8B$i$J$$$?$a!"(B
        $BCm0U$,I,MW$G$9!#(B

    e) DNS $B$N(B SOA $B%l%3!<%I$KEPO?$5$l$?%a!<%k%"%I%l%9(B

        $BEPO?$5$l$F$$$k%a!<%k%"%I%l%9$,!"O"Mm@h%5%$%H$KB0$7$F$$$J$$$+!"(B
        $B%a!<%k%\%C%/%9$r;2>H$7$F$$$J$$$3$H$,9M$($i$l$k$?$a!"Cm0U$,I,MW(B
        $B$G$9!#FC$K5U0z$-MQ$N%>!<%s$K$*$1$k(B SOA $B%l%3!<%I$N>l9g$K$O!">e(B
        $BN.$N(B ISP $BEy!"O"Mm@h%5%$%H$G$O$J$$%"%I%l%9$,5-:\$5$l$F$$$k>l9g(B
        $B$bB?$/8+<u$1$i$l$^$9!#(B

(2) CSIRT $B$KO"Mm$9$k>l9g(B

  $B<+%5%$%H$b$7$/$OO"Mm@h%5%$%H$N$$$:$l$+$rBP>]$H$7$?%5!<%S%9$r9T$J$C$F(B
$B$$$k(B CSIRT $B$,$"$k>l9g$O!"$=$A$i$KO"Mm$9$k$3$H$,9M$($i$l$^$9!#@$3&3FCO(B
$B$N(B CSIRT $B$K$D$$$F$O!"Nc$($P0J2<$N(B URL $B$K>pJs$,$"$j$^$9!#(B

        http://www.first.org/team-info/

  $B0lHLE*$K!"3F(B CSIRT $B$O3F!9FH<+$N!"%5!<%S%9FbMF!"BP1~%]%j%7!<!"$*$h$S(B
$BJs9p%U%)!<%`$r:NMQ$7$F$$$^$9!#O"Mm$N:]$K$O!";vA0$K3FAH?%$N(B Web $BEy$K$F(B
$B8x3+$5$l$F$$$k>pJs$r3NG'$9$k$3$H$r?d>)$7$^$9!#(B

  $BFC$K!"F|K\9qFb$NAH?%$,4X78$9$k%$%s%7%G%s%H$K$D$$$F$O!"(BJPCERT/CC $B$K$4(B
$BO"MmD:$1$l$P9,$$$G$9!#(BJPCERT/CC $B$X$NO"MmJ}K!$K$D$$$F$O0J2<$N(B URL $B$r$4(B
$B;2>H$/$@$5$$!#(B

        http://www.jpcert.or.jp/form/


V. $BO"Mm$9$Y$-FbMF(B

  $BHkF?$9$Y$->pJs$,4^$^$l$F$$$k>l9g$K$O!"0l$D$N<jCJ$H$7$F!"Iz$;;z$dH4?h(B
$BEy$K$h$j!"4X78%5%$%H$K3+<($7$F$b:9$7;Y$($J$$ItJ,$N$_$rDs6!$9$k$3$H$b9M(B
$B$($i$l$^$9!#(B

(1) $BO"Mm$r1_3j$K?J$a$k$?$a$N>pJs(B

  $B<+%5%$%H$NO"Mm@h!"C4Ev<T$rL@3N$KEA$($kI,MW$,$"$j$^$9!#$^$?!"B>$K4{$K(B
$BO"Mm$r<h$C$F$$$k%5%$%H$d(B CSIRT $BEy$,$"$j!"$=$N;v<B$r:#2s$NO"Mm@h$KEA$((B
$B$F$b:9$7;Y$($,$J$$>l9g$K$O!"@hJ}$K$=$N;]$rEA$($k$+!"EE;R%a!<%k$N(B Cc:
$B$K2C$($F$*$/$3$H$,9M$($i$l$^$9!#(B

  $B$^$?!"0E9fDL?.$r4uK>$9$k>l9g$O!"<+%5%$%H$N80$d!"80$N%@%$%8%'%9%H>pJs(B
($B%U%#%s%,!<%W%j%s%H!"%A%'%C%/%5%`(B) $B$rBEEv$JJ}K!$GEA$($^$9!#(B

  $B%l%]!<%H$rDI@W$9$k$?$a$NHV9f(B (JPCERT $B$N>l9g$O(B"JPCERT#nnnnnnnn" $B7A<0(B
$B$NHV9f(B) $B$rH/9T$7$F$$$kAH?%$b!"(BCSIRT $B$K8B$i$:B?$/8+<u$1$i$l$^$9!#$h$C$F!"(B
$B4{$KO"Mm$r9T$J$C$F$$$kAH?%$+$iDI@WHV9f$,H/9T$5$l$?>l9g$K$O!"$=$NHV9f$r(B
$BE:$($k$3$H$,K>$^$l$^$9!#(B

(2) $B%"%/%;%9$N;v<B$rD4::$9$k$?$a$N>pJs(B

  $B>/$J$/$H$b!"(B

    $B!&%"%/%;%9$NFbMF(B ($B%W%m%H%3%k!"%]!<%HHV9f!"%Q%1%C%H$NFbMFEy(B)
    $B!&H/@8$7$?F|;~(B
    $B!&4X78$9$k%[%9%H$N(B IP $B%"%I%l%9(B ($B%[%9%HL>(B)

$B$^$?$O$=$l$KAjEv$9$k>pJs$rO"Mm$9$kI,MW$,$"$j$^$9!#F|;~>pJs$K$D$$$F$O!"(B
$B%?%$%`%>!<%s$rL@3N$K$7$F$*$/I,MW$,$"$j$^$9!#(B

  $B2DG=$G$"$l$P!"(B

    $B!&%"%/%;%9$N;v<B$,5-:\$5$l$?%m%0(B

$B$rE:IU$5$l$k$3$H$r$*4+$a$7$^$9!#%m%0$K5-:\$5$l$?F|;~$K$D$$$F$O!"%?%$%`(B
$B%>!<%s$H;~7W$N8m:9$K$D$$$F$N>pJs$r$"$o$;$F5-:\$9$k$3$H$,K>$^$l$^$9!#(B

(3) $B$=$NB>M-1W$J>pJs(B

  $B?/F~$r<u$1$F$$$?>l9g$K$O!"?/F~<T$,;D$7$?%U%!%$%kN`$,M-8z$J>pJs$H$J$j(B
$B$^$9!#FC$K!"?/F~<T$,;D$7$?%U%!%$%kN`$KB>$N%5%$%H$r967b$9$k%D!<%k$,4^$^(B
$B$l$F$$$k>l9g$K$O!"967b$NBP>]$H$J$C$?%W%m%@%/%H$N3+H/85$,<eE@$rFCDj$72~(B
$BA1$9$k$N$KHs>o$KM-1W$G$9!#$7$+$7$J$,$i!"$=$N$h$&$J%D!<%k$O0-MQ$5$l$k$*(B
$B$=$l$b$"$k$?$a!"<h$j07$$$K$O==J,$KG[N8$,I,MW$G$9!#(B


VI. $B;29M;qNA(B

[1]  Finding Site Contacts

     http://www.cert.org/tech_tips/finding_site_contacts.html

__________

$BCm(B: JPCERT/CC $B$N3hF0$O!"FCDj$N8D?M$dAH?%$NMx1W$rJ]>c$9$k$3$H$rL\E*$H$7(B
$B$?$b$N$G$O$"$j$^$;$s!#8DJL$NLdBj$K4X$9$k$*Ld$$9g$o$;Ey$KBP$7$FI,$:$*Ez(B
$B$($G$-$k$H$O8B$i$J$$$3$H$r$"$i$+$8$a$4N;>5$/$@$5$$!#$^$?!"K\7o$K4X$9$k(B
$B$b$N$b4^$a!"(BJPCERT/CC $B$X$N$*Ld$$9g$o$;Ey$,A}2C$9$k$3$H$,M=A[$5$l$k$?$a!"(B
$B$*Ez$($G$-$k>l9g$G$b$42sEz$,CY$l$k2DG=@-$,$"$k$3$H$r2?B4$4>5CN$*$-$/$@(B
$B$5$$!#(B

$BCm(B: $B$3$NJ8=q$O!"%3%s%T%e!<%?%;%-%e%j%F%#%$%s%7%G%s%H$KBP$9$k0lHLE*$J>p(B
$BJsDs6!$rL\E*$H$9$k$b$N$G$"$j!"FCDj$N8D?M$dAH?%$KBP$9$k!"8DJL$N%3%s%5%k(B
$B%F%#%s%0$rL\E*$H$7$?$b$N$G$O$"$j$^$;$s!#$^$?(B JPCERT/CC $B$O!"$3$NJ8=q$K(B
$B5-:\$5$l$?>pJs$NFbMF$,@53N$G$"$k$3$H$KEX$a$F$*$j$^$9$,!"@53N@-$r4^$a0l(B
$B@Z$NIJ<A$K$D$$$F$3$l$rJ]>Z$9$k$b$N$G$O$"$j$^$;$s!#$3$NJ8=q$K5-:\$5$l$?(B
$B>pJs$K4p$E$$$F!"5.J}$"$k$$$O5.AH?%$,$H$i$l$k9TF0(B / $B$"$k$$$O$H$i$l$J$+$C(B
$B$?9TF0$K$h$C$F0z$-5/$3$5$l$k7k2L$KBP$7$F!"(BJPCERT/CC $B$O2?$iJ]>c$rM?$($k(B
$B$b$N$G$O$"$j$^$;$s!#(B

__________

1999-2002,2005 (C) JPCERT/CC

  $B$3$NJ8=q$rE>:\$9$k:]$K$O!"A4J8$rE>:\$7$F$/$@$5$$!#>pJs$O99?7$5$l$F$$(B
$B$k2DG=@-$,$"$j$^$9$N$G!":G?7>pJs$K$D$$$F$O(B

        http://www.jpcert.or.jp/ed/

$B$r;2>H$7$F$/$@$5$$!#$d$`$rF@$J$$M}M3$GA4J8$rE>:\$G$-$J$$>l9g$O!"I,$:86(B
$BE5$H$7$F$3$N(B URL $B$*$h$S(B JPCERT/CC $B$NO"Mm@h$r5-$9$h$&$K$7$F$/$@$5$$!#(B

  JPCERT/CC $B$N(B PGP $B8x3+80$O0J2<$N(B URL $B$+$iF~<j$G$-$^$9!#(B

        http://www.jpcert.or.jp/jpcert.asc

__________

$B2~D{MzNr(B

2005-04-01  JPNIC/JPRS whois $B1?MQ7ABV$NJQ99$KH<$&99?7(B
2002-04-11  $B;2>H(B URL $B$N99?7(B
2001-12-27  $B;2>H(B URL $B5Z$SJ8LL$N99?7(B
2000-08-25  $B;2>H(B URL $B$N99?7(B
1999-11-17  $B=iHG(B

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv

iQCVAwUBQkyLS4x1ay4slNTtAQGiXgP/dHeP4+A6JBj7Li/OxbiMEW3pnSSuCMBi
R0yy3nGaNyUVKC/DfxePM6nerZXvyhPyAHJh2KKWq6NdHPYYrRehbkg1zXHggqLv
q7belf/Ap8mp4el9wBjTkukJRDsB6+Ltj55eVYEtj2QrPf5SB6gZPrBkYxMOwJ7a
mRSol8oibp4=
=OL7J
-----END PGP SIGNATURE-----