RE: Standards for developing secure software

From: jasonk (jasonkat_private)
Date: Sat Jan 25 2003 - 04:48:29 PST

  • Next message: listsat_private: "Re: Effective, Real and Group id switching for daemons"

    > > Here's my suggestion for where to start:
    > >
    > > 	Don't assume that It Won't Happen
    > >
    > > If someone can obtain a benefit by Making It Happen, then there's a
    > > good chance that It Will Happen.
    > >
    > > What will happen if the string is too long? What if it contains
    > > "unusual" characters? What if the integer is negative, or zero?
    > 
    > What if the string length is negative? (and yes, I've seen a C
    strlen()
    > return a negative value, when another thread trashed the stack and
    > corrupted
    > the return value).
    
    Even better, and sticking with the whole *point* of the idea: what if
    the string length is NOT between 1 and some defined normal maximum?
    What if it contains letters other than a-z & A-Z?
    
    Isn't this the whole point of the exercise?  Catch everything you need
    and drop the rest ..
    
    jasonk
    



    This archive was generated by hypermail 2b30 : Sat Jan 25 2003 - 09:11:23 PST