SecurityFocus

Writing Secure code Dec 27 2002 12:46PM
Rahul Chander Kashyap (rahul nsecure net) (6 replies)

Re: Writing Secure code Dec 28 2002 03:36AM
K K Mookhey (cto nii co in)

Do check out
http://www.dwheeler.com/secure-programs/
Although for Linux and Unix most of the principles apply to Windows as well.
There are books on the subject too.

> And one more thing...<this one might be intresting ;-)> Is it possible
> to write code that is completely secure and not exploitable?
>
NO. First up, assuming you manage to plug in all the existing
vulnerabilities (and that is a big assumption in itself), you can never
guarantee security of code from a whole new as-yet-undiscovered class of
vulnerabilities. This is like asking, can I have a 100% secure hack-proof
server/network/firewall. One can only raise the barrier higher and get the
percentages on your side.

HTH

K. K. Mookhey
Chief Technology Officer
Network Intelligence India Pvt. Ltd.
Email: cto (at) nii.co (dot) in [email concealed]
Web: www.nii.co.in
Tel: 91-22-22001530/22006019
=============================
The Unix Auditor's Practical Handbook
http://www.nii.co.in/tuaph.html
=============================

[ reply ]

Re: Writing Secure code Dec 27 2002 11:16PM
Bob Bruen (coldrain sover net)

Re: Writing Secure code Dec 27 2002 06:17PM
Dana Epp (dana vulscan com)

Re: Writing Secure code Dec 27 2002 06:03PM
Valdis Kletnieks vt edu (2 replies)

Re: Writing Secure code Dec 28 2002 07:40AM
Glynn Clements (glynn clements virgin net) (2 replies)

Re: Writing Secure code Dec 29 2002 12:35AM
Cesar (cesarc56 yahoo com)

Re: Writing Secure code Dec 28 2002 07:04PM
Crispin Cowan (crispin wirex com)

RE: Writing Secure code Dec 27 2002 08:51PM
Roger Alexander (rta cs colostate edu) (1 replies)

RE: Writing Secure code Dec 30 2002 12:41PM
Matt McClellan (mmcclellan nfr com) (2 replies)

RE: Writing Secure code Jan 01 2003 02:46AM
peleus (peleus peleus net) (1 replies)

RE: Writing Secure code Jan 03 2003 04:36AM
Timo Sirainen (tss iki fi)

Re: Writing Secure code[update] Dec 31 2002 10:20AM
Rahul Chander Kashyap (rahul nsecure net) (2 replies)

Re: Writing Secure code[update] Jan 01 2003 12:21PM
K K Mookhey (cto nii co in) (2 replies)

Re: Writing Secure code[update] Jan 04 2003 12:31AM
Warwick Molloy (wmolloy optushome com au)

Re: Writing Secure code[update] Jan 02 2003 11:55PM
Alex Russell (alex netWindows org)

Re: Writing Secure code[update] Dec 31 2002 08:28PM
Crispin Cowan (crispin wirex com)

RE: Writing Secure code Dec 27 2002 05:46PM
Jeremy Epstein (jepstein webmethods com) (1 replies)

Re: Writing Secure code Dec 27 2002 08:50PM
Valdis Kletnieks vt edu

Re: Writing Secure code Dec 27 2002 05:43PM
John Viega (viega list org) (2 replies)

Re: Writing Secure code Dec 27 2002 09:54PM
Alex Russell (alex netWindows org) (1 replies)

Re: Writing Secure code Dec 27 2002 08:57PM
John Viega (viega list org)

RE: Writing Secure code Dec 27 2002 08:59PM
Matt McClellan (mcc nfr com) (1 replies)

Re: Writing Secure code Dec 27 2002 09:06PM
John Viega (viega list org)