Merge pull request #25 from Seol-JY/fix/vulnerability

Seol-JY · web-flow · commit 6a99c158e1bd · 2024-04-08T11:23:01.000+09:00
[FIX]: 취약점 수정
diff --git a/client/public/index.html b/client/public/index.html
@@ -21,40 +21,4 @@
   <body onpaste="return false">
     <div id="root"></div>
   </body>
-  <script>
-    window.onload = function () {
-      const detectDevTool = (allow) => {
-        let a = false;
-        if (isNaN(+allow)) allow = 100;
-        const start = +new Date();
-        debugger;
-        const end = +new Date();
-        if (isNaN(start) || isNaN(end) || end - start > allow) {
-          alert("DEVTOOLS detected. all operations will be terminated.");
-          window.location.href = "/";
-        }
-      };
-
-      if (window.attachEvent) {
-        if (
-          document.readyState === "complete" ||
-          document.readyState === "interactive"
-        ) {
-          detectDevTool();
-          window.attachEvent("onresize", detectDevTool);
-          window.attachEvent("onmousemove", detectDevTool);
-          window.attachEvent("onfocus", detectDevTool);
-          window.attachEvent("onblur", detectDevTool);
-        } else {
-          setTimeout(arguments.callee, 0);
-        }
-      } else {
-        window.addEventListener("load", detectDevTool);
-        window.addEventListener("resize", detectDevTool);
-        window.addEventListener("mousemove", detectDevTool);
-        window.addEventListener("focus", detectDevTool);
-        window.addEventListener("blur", detectDevTool);
-      }
-    };
-  </script>
 </html>
diff --git a/client/src/App.js b/client/src/App.js
@@ -23,57 +23,9 @@ function App() {
   );
   const [counterValue, setCounterValue] = useState(0);
 
-  // useEffect(() => {
-  //   // 마우스 메뉴 막기
-  //   const handleContextMenu = (e) => {
-  //     e.preventDefault();
-  //   };
-  //   const handleKeyDown = (e) => {
-  //     if (
-  //       // CMD + Alt + I (Chrome, Firefox, Safari)
-  //       (e.metaKey && e.altKey && e.keyCode === 73) ||
-  //       // CMD + Alt + J (Chrome)
-  //       (e.metaKey && e.altKey && e.keyCode === 74) ||
-  //       // CMD + Alt + C (Chrome)
-  //       (e.metaKey && e.altKey && e.keyCode === 67) ||
-  //       // CMD + Shift + C (Chrome)
-  //       (e.metaKey && e.shiftKey && e.keyCode === 67) ||
-  //       // Ctrl + Shift + I (Chrome, Firefox, Safari, Edge)
-  //       (e.ctrlKey && e.shiftKey && e.keyCode === 73) ||
-  //       // Ctrl + Shift + J (Chrome, Edge)
-  //       (e.ctrlKey && e.shiftKey && e.keyCode === 74) ||
-  //       // Ctrl + Shift + C (Chrome, Edge)
-  //       (e.ctrlKey && e.shiftKey && e.keyCode === 67) ||
-  //       // F12 (Chome, Firefox, Edge)
-  //       e.keyCode === 123 ||
-  //       // CMD + Alt + U, Ctrl + U (View source: Chrome, Firefox, Safari, Edge)
-  //       (e.metaKey && e.altKey && e.keyCode === 85) ||
-  //       (e.ctrlKey && e.keyCode === 85)
-  //     ) {
-  //       e.preventDefault();
-  //     }
-  //   };
-
-  //   document.addEventListener("contextmenu", handleContextMenu);
-  //   document.addEventListener("keydown", handleKeyDown);
-
-  //   return () => {
-  //     document.removeEventListener("contextmenu", handleContextMenu);
-  //     document.removeEventListener("keydown", handleKeyDown);
-  //   };
-  // }, []);
-
   useEffect(() => {
     fetchCounterValue();
     egg();
-
-    window.addEventListener("devtoolschange", (event) => {
-      if (event.detail.isOpen) {
-        console.log("Developer tools opened");
-      } else {
-        console.log("Developer tools closed");
-      }
-    });
   }, []);
 
   const fetchCounterValue = async () => {
diff --git a/client/src/components/Editor.jsx b/client/src/components/Editor.jsx
@@ -95,7 +95,12 @@ export default function Editor({
 
   const userInputHandler = (event) => {
     //input창 내용을 userinput에 반영
+    const previousValue = userInput; // 직전 값 저장
     setUserInput(event.currentTarget.value); // replace(/[ㄱ-ㅎ|ㅏ-ㅣ|가-힣]/g,'')
+    if (event.currentTarget.value.length - previousValue.length > 2) {
+      alert("Careful. This might not do what you think, 잘못된 접근입니다.");
+      window.location.reload();
+    }
   };
 
   useEffect(() => {
diff --git a/client/src/utils/egg.js b/client/src/utils/egg.js
@@ -50,4 +50,8 @@ can manipulate speed, please report
     "color: balck; font-size: 10px;",
     "color: #fff530; background-color: #212121; font-size: 11px;"
   );
+  console.log(
+    `%cCareful. This might not do what you think.`,
+    "color: yellow; background-color: red; font-size: 14px; font-weight: bold;"
+  );
 }

Original file line number	Diff line number	Diff line change
`@@ -50,4 +50,8 @@ can manipulate speed, please report`
`50`	`50`	`"color: balck; font-size: 10px;",`
`51`	`51`	`"color: #fff530; background-color: #212121; font-size: 11px;"`
`52`	`52`	`);`
	`53`	`+ console.log(`
	`54`	+ `%cCareful. This might not do what you think.`,
	`55`	`+ "color: yellow; background-color: red; font-size: 14px; font-weight: bold;"`
	`56`	`+ );`
`53`	`57`	`}`