Secure Programming References
From: prole@SUBTERRAIN.NET (prole)
Subject: Secure Coding Refs (was Re: BitchX /ignore bug)
Date: 8 Jul 2000 05:40:34 +0200
List: VULN-DEV
Some of these are a little dated but still useful:
Secure Programming Checklist
Secure Unix Programming FAQ
Security Code Review Guidelines
Robust Programming
The Unix Secure Programming FAQ
How To Write a Setuid Program
UNIX Security: Security in Programming
"How to find security holes"
From the FreeBSD pages
(scroll down midway)
In general, I recommend most any of Stevens' books (such as APUE -
Advanced Programming in the Unix Environment) for examples of robust
code, although it's not necessarily a checklist or security-specific.
_p
Doobee R. Tzeck
Last modified: Mon Jul 10 16:40:03 CEST 2000