Vulnerability Development mailing list archives

Re: BitchX /ignore bug

From: crispin () WIREX COM (Crispin Cowan)
Date: Fri, 7 Jul 2000 10:32:27 -0700


Bluefish wrote:

Does anyone know of a site or book which simply is a long list of
"do not" along with a short explanation of "why"? I would enjoy reading
such a site/book a lot. And it would definatly be a good studdy material
for most programmers.


The classic is Matt Bishop's "Writing Safe Setuid Programs"
http://olympus.cs.ucdavis.edu/~bishop/secprog.html

Crispin

--
Crispin Cowan, CTO, WireX Communications, Inc.    http://wirex.com
Free Hardened Linux Distribution:                 http://immunix.org
        Security JOB:  http://immunix.org/jobs.html

Current thread:

Re: BitchX /ignore bug, (continued)
- - - Re: BitchX /ignore bug Mikael Olsson (Jul 07)
    - Re: BitchX /ignore bug Steve Mosher (Jul 08)
    - The AOL Spyware Maxime Rousseau (Jul 07)
    - Re: The AOL Spyware Mikael Olsson (Jul 07)
    - Re: The AOL Spyware Masial (Jul 08)
    - Re: The AOL Spyware Mikael Olsson (Jul 08)
    - Re: The AOL Spyware info (Jul 13)
    - Re: BitchX /ignore bug Bluefish (Jul 07)
    - Re: BitchX /ignore bug Slawek (Jul 07)
    - Re: BitchX /ignore bug Arturo Busleiman (Jul 07)
    - Re: BitchX /ignore bug Crispin Cowan (Jul 07)
    - Re: BitchX /ignore bug Hogenberg, Richard (Jul 07)
    - Re: BitchX /ignore bug Bluefish (Jul 07)
    - Re: BitchX /ignore bug Schlachter, Jake (Jul 07)
    - Re: BitchX /ignore bug Bluefish (Jul 08)
    - Re: BitchX /ignore bug Christofer C. Bell (Jul 08)
    - Re: BitchX /ignore bug Erich Meier (Jul 11)
    - Re: BitchX /ignore bug Ron DuFresne (Jul 07)
    - Re: BitchX /ignore bug Juan M. Courcoul (Jul 07)
    - remote exploit Jim Stickley (Jul 07)
    - Re: remote exploit Bluefish (Jul 08)

(Thread continues...)