Secure Programming References

From: prole@SUBTERRAIN.NET (prole)
Subject: Secure Coding Refs (was Re: BitchX /ignore bug)
Date: 8 Jul 2000 05:40:34 +0200
List: VULN-DEV

Some of these are a little dated but still useful:


Secure Programming Checklist


Secure Unix Programming FAQ


Security Code Review Guidelines


Robust Programming


The Unix Secure Programming FAQ


How To Write a Setuid Program


UNIX Security: Security in Programming


"How to find security holes"


From the FreeBSD pages
(scroll down midway)

In general, I recommend most any of Stevens' books (such as APUE -
Advanced Programming in the Unix Environment) for examples of robust
code, although it's not necessarily a checklist or security-specific.

_p


Doobee R. Tzeck
Last modified: Mon Jul 10 16:40:03 CEST 2000