RE: Standards for developing secure software

From: jasonk (jasonkat_private)
Date: Sat Jan 25 2003 - 04:48:29 PST

  • Next message: listsat_private: "Re: Effective, Real and Group id switching for daemons" 

    > > Here's my suggestion for where to start:
> >
> > 	Don't assume that It Won't Happen
> >
> > If someone can obtain a benefit by Making It Happen, then there's a
> > good chance that It Will Happen.
> >
> > What will happen if the string is too long? What if it contains
> > "unusual" characters? What if the integer is negative, or zero?
> 
> What if the string length is negative? (and yes, I've seen a C
strlen()
> return a negative value, when another thread trashed the stack and
> corrupted
> the return value).

Even better, and sticking with the whole *point* of the idea: what if
the string length is NOT between 1 and some defined normal maximum?
What if it contains letters other than a-z & A-Z?

Isn't this the whole point of the exercise?  Catch everything you need
and drop the rest ..

jasonk

    This archive was generated by hypermail 2b30 : Sat Jan 25 2003 - 09:11:23 PST