Date: Mon, 16 Dec 1996 18:26:05 -0500 (EST) From: Adam Shostack <adam@homeport.org> To: ley@cert.dfn.de (Wolfgang Ley) Cc: craig@ProGroup.COM, security@freebsd.org Subject: Re: crontab security hole exploit Message-ID: <199612162327.SAA10241@homeport.org> In-Reply-To: <199612161810.TAA03636@tiger.cert.dfn.de> from Wolfgang Ley at "Dec 16, 96 07:10:11 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
Wolfgang Ley wrote: | > Is there someplace or some book that someone who is writing new software can | > refer to for learning how to write secure code in the first place? I | > certainly don't want to ask some whiny security cop for each and every | > little detail.... :) | You might want to check the the "Secure Programming Checklist" which is | a collection of the suggestions from the "Practical UNIX and Internet | Security" book and a paper from AUSCERT. | | ftp://ftp.auscert.org.au/pub/auscert/papers/secure_programming_checklist I'll be egotistical and suggest my code review guidelines; they talk about what to look for in a review, and how to write code that will pass one. http://www.homeport.org/~adam/review.html Adam -- "It is seldom that liberty of any kind is lost all at once." -Hume
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199612162327.SAA10241>