Slashdot Mirror

← Back to Stories (view on slashdot.org)

Secure Programming in GNU/Linux Systems: Part I

Posted by ryuzaki0 on from the better-safe-than-sorry dept.

LNXPhreak writes "A new article on OSWeekly.com discusses secure programming in GPU/Linux systems in terms of programming talent and requirements. Quote: "A "secure program" is an application that sits on a security boundary, taking input from a source that does not have the same access rights as the program. Such programs include application programs used as viewers of remote data, web applications (including CGI scripts), network servers, and setuid/setgid programs."

1 of 64 comments (clear)

  1. Re:Unsafe Languages? by EsbenMoseHansen · · Score: 3, Informative

    Actually, strncpy is almost as bad as strcpy, with the added bonus of being inefficient. Use strlcpy. strncpy is a leftover from an early database format, and should almost never be used.

    --
    Religion is regarded by the common people as true, by the wise as false, and by rulers as useful.