Slashdot Mirror

← Back to Stories (view on slashdot.org)

How To Prevent the Next Heartbleed

Posted by timothy on from the leave-your-comment-in-the-form-of-an-exploit dept.

dwheeler (321049) writes "Heartbleed was bad vulnerability in OpenSSL. My article How to Prevent the next Heartbleed explains why so many tools missed it... and what could be done to prevent the next one. Are there other ways to detect these vulnerabilities ahead-of-time? What did I miss?"

6 of 231 comments (clear)

  1. Re:How about by zr · · Score: 4, Informative

    about as effective as sunshine and puppies.

  2. Re:need to get over the "cult of macho programming by MoonlessNights · · Score: 5, Insightful

    The problem has more to do with the "hey, this is free so lets just take it" attitude of the downstream consumers not willing to pay for anyone to look at the code or pay anyone to write it.

    Why would you want the OpenSSL people to be held accountable for something they basically just wrote on their own time since nobody else bothered?

    Striking out to solve a problem should NOT be punished (that culture of legal punishment for being useful is part of why knowledge industries are leaving North America).

    This problem was caused by a simple missed parameter check, nothing more. Stop acting like the cultural problem is with the developers when it is with the leaches who consumer their work.

  3. Re:How about by Kazoo+the+Clown · · Score: 4, Funny

    Yes, I think it's clear the next gen of CPUs really needs to have the machine language removed entirely. What a security hole!

  4. Re:Static analysis by Krishnoid · · Score: 4, Informative

    Coverity has a blog post describing the problem and why their static analysis methods currently can't detect it.

  5. Re:How about by Dahamma · · Score: 4, Informative

    I have personally ported OpenSSL to at least 6 embedded systems, one of which was so proprietary they wrote their own C/C++ compiler. Good luck finding an Ada compiler for that.

    his makes it great for low-level, performance sensitive programs like OSes, compilers,

    Aaand... performance sensitive like, say... crypto? There isn't much code more performance sensitive than crypto libraries, which is one of OpenSSL's main uses. In fact, there are a whole bunch of native assembler implementations for x86, MIPS, ARM, PPC, etc to achieve that low level performance. Clearly you have never actually looked at the OpenSSL code base...

  6. Re:How about by Pricetx · · Score: 5, Interesting

    A quote from the "Insane Coding" blog, which in turn quotes from the book "cryptography engineering":

    The issues with higher level languages being used in cryptography are:
    - Ensuring data is wiped clean, without the compiler optimizations or virtual machine ignoring what they deem to be pointless operations.
    - The inability to use some high-level languages because they lack a way to tie in forceful cleanup of primitive data types, and their error handling mechanisms may end up leaving no way to wipe data, or data is duplicated without permission.
    - Almost every single thing which may be the right way of doing things elsewhere is completely wrong where cryptography is concerned.