Secure Programming References

From: prole@SUBTERRAIN.NET (prole)
Subject: Secure Coding Refs (was Re: BitchX /ignore bug)
Date: 8 Jul 2000 05:40:34 +0200

Some of these are a little dated but still useful:

Secure Programming Checklist

Secure Unix Programming FAQ

Security Code Review Guidelines

Robust Programming

The Unix Secure Programming FAQ

How To Write a Setuid Program

UNIX Security: Security in Programming

"How to find security holes"

From the FreeBSD pages
(scroll down midway)

In general, I recommend most any of Stevens' books (such as APUE -
Advanced Programming in the Unix Environment) for examples of robust
code, although it's not necessarily a checklist or security-specific.


Doobee R. Tzeck
Last modified: Mon Jul 10 16:40:03 CEST 2000