|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
Re: [PLUG] Software security
|
I don't know if its too late, but I also found a "Secure Programming for
Linux and Unix HOWTO". The url is
http://www.linuxdoc.org/HOWTO/Secure-Programs-HOWTO/introduction.html
Goodluck,
Naresh
-----------------------------------
Naresh Reddy
nyg102@psu.edu
http://www.personal.psu.edu/nyg102
-----------------------------------
On Sun, 17 Mar 2002, mike.h wrote:
> I've worked for very large (100K + employees) companies with very good
> security policies. In a small office where I recently did some work, users
> used their 2 letter initials as passwords. My sister works for a small
> company where every user logs in as ADMIN! The security policies of the
> establishment would seem at least as important as the features of the OS;
> maybe more.
>
> Meanwhile, I get several alerts every month about security flaws discovered
> in common *nix programs. I'm not an expert in creating secure software, but
> I would like to learn. I would be very interested in a discussion about how
> to create programs that are free from buffer overflow problems and other
> security weaknesses. Are there standard tools used to test software for
> these types of problems? Are there standard techniques used to address them?
>
> If anyone here has experience/expertise in this, I would greatly appreciate
> your thoughts on how to improve my own software.
>
> TIA,
> -mike.h
>
>
>
> ______________________________________________________________________
> Philadelphia Linux Users Group - http://www.phillylinux.org
> Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce
> General Discussion - http://lists.phillylinux.org/mail/listinfo/plug
>
>
>
______________________________________________________________________
Philadelphia Linux Users Group - http://www.phillylinux.org
Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce
General Discussion - http://lists.phillylinux.org/mail/listinfo/plug
|
|