OpenBSD Journal

Secure programmer: Validating input

Contributed by jose on from the helping-out-your-code dept.

A nice piece from David Wheeler on IBM's DeveloperWorks site covers some of the basics in input handling . This is the second piece in a series on DeveloperWorks. The first is about the mentality of writing secure code . Both are a good place to start. David Wheeler is probably best known for his Secure Programming for Linux and Unix HOWTO , which can also be used to audit programs (he wrote a tool called flawfinder to help you with that).

(Comments are closed)


Credits

Copyright © - Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]