OnLamp: Secure Programming Techniques

Contributed by jose on 2003-04-18 from the starting-with-the-basics dept.

The recently released Practical Unix & Internet Security, 3rd Edition includes basics on secure programming tips. An excerpt of this has appeared on the OnLamp site. In this article by the book's authors, Gene Spafford, Simson Garfinkel, and Alan Schwartz, a slew of sound, secure programming practices are introduced. This wont make you an advanced, secure programmer overnight, but it will help you understand the practice of secure programming and why OpenBSD makes some of the changes it does.

(Comments are closed)

Comments

By Anonymous Coward () on 2003-04-18 12:00

if openbsd team would only aplly concepts..no need for errata page..

till then, tis no more secure than linux..

and linux/fbsd chroot(jail) can't be broken out of.
Comments
1. By Anonymous Coward () on 2003-04-18 12:42
  
  OpenBSD should rather implement a kill_all_trolls() syscall than a jail().
2. By Anonymous Coward () on 2003-04-18 15:35
  
  hahahaha.
  
  linux/fbsd chroot(jail) can't be broken out of.
  
  I needed a good laugh this morning. THanks for trolling, please come again.
  Comments
  1. By Anonymous Coward () on 2003-04-18 17:10
    
    did not see the discussion showing openbsd chroot can be broken out of?
    
    they defended this by saying chroot was not meant to be secure
    
    haha
    
    linux/fbsd have a jail, which can not be broken out of.
    
    Comments
    
    By Anonymous Coward () on 2003-04-18 18:35
    
    keep living in your imaginary world.
    
    Many of the methods for breaking out of chroot apply fairly nicely to breaking out of jail on fbsd as well.
    
    Comments
    
    By Anonymous Coward () on 2003-04-18 22:52
    
    You may want to do a little more research, and start thinking for yourself instead of swallowing everything you are fed.
3. By krh () on 2003-04-18 20:21
  
  Let me ask some simple questions:
  
  If you don't like OpenBSD, why are you here?
  
  Does it inflate your ego to insult the OpenBSD project? Do you think that your insults will change our opinions? Do you think your insults will end the OpenBSD project?
  
  Do you expect to accomplish anything other than making people mad?
  
  It's always a good idea to be nice to people.
4. By Anonymous Coward () on 2003-04-19 13:07
  
  "and linux/fbsd chroot(jail) can't be broken out of."
  
  If you are going to make such a statement you should back it up. Please give references to where we can find such exploits for OpenBSD.
  Comments
  1. By Anonymous Coward () on 2003-04-19 08:39
    
    http://cvsweb.grsecurity.net/index.cgi/regression/
5. By tedu () on 2003-04-19 02:23
  
  whatever jail you're using can obviously be broken. just look at all the trolls streaming out of it.
  
  haha
6. By NimaDeus () NimaDeus@nimadeus.be on 2003-04-24 11:59 mailto:NimaDeus@nimadeus.be
  
  Linux chrooted enviroment cannot be broken? wow damn this must be DOS then.
  
  slave:~# uname -a && ls / && ./break_chroot
  Linux Slave.TerraTrans.be TerraTrans Kernel #2 Mon Mar 17 22:02:15 PST 2003 i686
  bin dev etc home lib man mnt proc root sbin tmp usr var
  slave:/# ls
  CHROOTED boot dev floppy if lib lost+found opt root tmp var
  bin cdrom etc home initrd logins mnt proc sbin usr vmlinuz
  slave:/#
By Anonymous Coward () on 2003-04-18 23:09

Holy crap! Where's the RSS stream gone, Jose? I've missed a whole bunch of stories :-( I have deadly.org in my top Slashbox at Slashdot to see what's happening, and there haven't been any new stories streamed in for a week or so!
Comments
1. By jose () on 2003-04-19 00:47 http://monkey.org/~jose/
  
  huh? it's still there, in fact i set it to now fill in the description tag with the text of the front page. if this really is a problem, ping me offline and we can figure this out. works for everyone else who is testing and using it that i have talked to (variety of platforms, aggregators).
  Comments
  1. By Anonymous Coward () on 2003-04-19 11:30
    
    Odd. It's been going for me for a few days now. This is WinXP/IE6 (so shoot me). I was about to mail you a screenshot link but my page appears to be down. Have you tried putting OpenBSD Journal into a slashbox? Perhaps it's a Slashdot problem and not your fault at all :-)
By Bob Beck () beck@openbsd.org on 2003-04-19 13:56 mailto:beck@openbsd.org

Yeah, and if you look at their example they
reccomend checking the return codes in security
critical programs by using assert(). Then as
soon as someone compiles it with -DNDEBUG
you end up with a program with no tests in it.

the author lectures about unitended consequences
and doesn't even read assert(3).
Comments
1. By veins () veins@skreel.org on 2003-04-19 06:39 www.skreel.org
  
  well, actually i would not say calling assert() is checking return value at all :)
2. By zil0g () on 2003-04-19 10:02
  
  What did you expect?
  
  d'oh
3. By Anonymous Coward () on 2003-04-19 18:00
  
  This, sadly, is all too common. I'm in my second semester of a Comp Sci degree (economic downturn took my job, was able to get money for going to school, riding out the recession there), and the book we're learning from liberally sprinkles the code with them. When will professional tech writers realize that it's a _debugging_ tool?
  Comments
  1. By Anonymous Coward () on 2003-04-19 18:06
    
    second _year_, goddammit
4. By Anonymous Coward () on 2003-05-24 19:43
  
  Yeah, and if you read what they wrote,
  you knew that:
  
  1) They only recommended it as a last resort.
  The authors never said it were the way to
  go. Having checks with assert() still is
  better than having none at all.
  
  2) If you can compile my binaries with -DNDEBUG
  you won't have to exploit them.. you can do
  a lot of meaner things to me.
  
  Well, before you try to insult people, read again and think it over.

Latest Articles

Thu, Apr 18
- 05:05 Coming soon to a -current system near you: parallel raw IP input (0)
Wed, Apr 17
- 05:33 In -current, default write format for tar(1) changed to "pax" (10)
Wed, Apr 10
- 18:50 OpenSMTPD 7.5.0p0 Released (2)
Tue, Apr 09
- 04:49 20 years since "and we're just starting": undeadly.org turns 20 (2024-04-09) (13)
Fri, Apr 05
- 06:16 OpenBSD 7.5 released (3)
Thu, Mar 28
- 18:18 LibreSSL 3.8.4 and 3.9.1 released (0)
Tue, Mar 12
- 06:53 OpenSSH 9.7/9.7p1 released! (0)
Mon, Mar 11
- 11:28 Game of Trees 0.97 released (0)
Sun, Mar 10
- 09:06 LibreSSL versions 3.8.3 and 3.9.0 released (0)

Credits

Copyright © 2004-2008 Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to April 2nd 2004 as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]