How Do You Know Your Code is Secure? - Slashdot

Slashdot is powered by your submissions, so send in your scoop

×

How Do You Know Your Code is Secure? 349

Posted by Zonk on Monday January 08, 2007 @06:19AM from the batten-down-the-hatches-mates dept.

bvc writes "Marucs Ranum notes that 'It's really hard to tell the difference between a program that works and one that just appears to work.' He explains that he just recently found a buffer overflow in Firewall Toolkit (FWTK), code that he wrote back in 1994. How do you go about making sure your code is secure? Especially if you have to write in a language like C or C++?"

This discussion has been archived. No new comments can be posted.

How Do You Know Your Code is Secure?

Search 349 Comments Log In/Create an Account

Comments Filter:

You don't (Score:5, Funny)

by CockMonster ( 886033 ) writes: on Monday January 08, 2007 @06:24AM (#17506118)

Just get others to formally review it so if anything is found, there's collective responsibilty

Share
twitter facebook
Verified (Score:5, Funny)

by Anonymous Coward writes: on Monday January 08, 2007 @06:24AM (#17506122)

I get mine verified by microsoft

Share
twitter facebook
Shovel method (Score:5, Funny)

by dangitman ( 862676 ) writes: on Monday January 08, 2007 @06:27AM (#17506140)

I hit it with a shovel. If the code doesn't fall apart, I know it's pretty securely attached to my computer. If not, I add more epoxy glue.

Share
twitter facebook
Easy (Score:5, Funny)

by $pearhead ( 1021201 ) writes: on Monday January 08, 2007 @06:33AM (#17506166)

Just make sure your buffers are really really REALLY big:

char nooverflowbuffer[234523400]; sprintf("Enter something:"); scanf("%s", nooverflowbuffer);

... or maybe not ...

Share
twitter facebook
Re:What's the matter with C/C++? (Score:5, Funny)

by Anonymous Coward writes: on Monday January 08, 2007 @06:48AM (#17506256)

'It's not that C/C++ is so insecure by itself'

yeah a gun by itself is not insecure either....
try giving it to a baby.....
well I prefer a baby with a knife...I can still run faster than him...

Parent Share
twitter facebook
Re:Some possibilities (Score:5, Funny)

by zCyl ( 14362 ) writes: on Monday January 08, 2007 @06:58AM (#17506308)

You cannot know for sure (unless you want to develop code by mathematical proof

In the words of the great Donald Knuth, "Beware of bugs in the above code; I have only proved it correct, not tried it."

Parent Share
twitter facebook
Don't let them use it where it matters (Score:5, Funny)

by Anonymous Coward writes: on Monday January 08, 2007 @07:00AM (#17506316)

I let my code have evident, gaping security flaws and make them well known. This way people will never use it in situations where security matters.

regards,
The author of sendmail

Share
twitter facebook
Re:You don't (Score:2, Funny)

by Anonymous Coward writes: on Monday January 08, 2007 @07:55AM (#17506602)

Prophylactic: [medterms.com] A preventive measure. The word comes from the Greek for "an advance guard," an apt term for a measure taken to fend off a disease or another unwanted consequence.

Sorry CockMonster, with today's DNA testing, getting others to participate in your virgin sacrifice wouldn't save you if you had a buffer overflow.

*Warning* as appropriate as prophylactic might seem under its definition for use in the computer industry when talking about firewalls, sandboxes, etc, please keep in mind that some female is probably going to holler sexual harassment when they hear it. Just as they would if you mentioned their stack overflow.

Parent Share
twitter facebook
Half a solution (Score:4, Funny)

by DoofusOfDeath ( 636671 ) writes: on Monday January 08, 2007 @08:12AM (#17506712)

How Do You Know Your Code is Secure?

Make it part of the critical path in music DRM. Then you know it's not secure.

Not sure about the flip-side, though.

Share
twitter facebook
Re:Don't use C++ as if it was only "C with classes (Score:2, Funny)

by orangeyoda ( 958347 ) writes: on Monday January 08, 2007 @08:14AM (#17506718)

Which is a good thing, Ada was awful to learn and worse to debug. I've seen the light, no more c++ spending hours to decode meglomaniac's tempalates , no more java exception hell , bye bye vb6 error unhandling . Hello C#

Parent Share
twitter facebook
If it compiles... (Score:3, Funny)

by GroovBird ( 209391 ) * writes: on Monday January 08, 2007 @08:20AM (#17506750) Homepage Journal

...you can ship it.

It's that simple!

Share
twitter facebook
Re:Assume failure (Score:5, Funny)

by TheRaven64 ( 641858 ) writes: on Monday January 08, 2007 @08:40AM (#17506880) Journal

Fuck off, private functions below the public API should never have to check their input.
I completely agree. There are no bugs in my code, just in the code of people calling my code.

Parent Share
twitter facebook
You know you're a geek when... (Score:5, Funny)

by ruiner13 ( 527499 ) writes: on Monday January 08, 2007 @09:35AM (#17507246) Homepage

You say things like:
Mistakes will come back to byte you.
without even flinching.

Parent Share
twitter facebook
Re:Easy (Score:4, Funny)

by gnasher719 ( 869701 ) writes: on Monday January 08, 2007 @10:03AM (#17507576)

The second version seems more secure, because it doesn't compile.
The first version seems to be quite secure as well, because it is likely to crash immediately, and obvious crashes will usually get fixed quickly.

Hint: What is the format string in >> sprintf("Enter something: "); and where will the output go?

Parent Share
twitter facebook
Re:Same way you hunt bugs (Score:3, Funny)

by autocracy ( 192714 ) writes: <slashdot2007@sto ... .com minus berry> on Monday January 08, 2007 @10:10AM (#17507632) Homepage

Yes, please continue to implement your own security.
Especially focus on validating usernames and passwords against an SQL database. That's my favorite.

Parent Share
twitter facebook
I doubt this guy's a security expert (Score:2, Funny)

by ianalis ( 833346 ) writes: on Monday January 08, 2007 @10:54AM (#17508104) Homepage

He's compiling as root :p

Share
twitter facebook
Re:The only sure way I know of: Lambda calculus (Score:2, Funny)

by SheeEttin ( 899897 ) writes: <[moc.liamg] [ta] [nitteeehs]> on Monday January 08, 2007 @11:38AM (#17508654) Homepage

You can't prove, for example, whether a lambda program will terminate (Halting Problem)
If you're running Windows, no problem. It'll terminate within the first few hours.

Parent Share
twitter facebook
Re:What's the matter with C/C++? (Score:1, Funny)

by Anonymous Coward writes: on Monday January 08, 2007 @01:12PM (#17510068)

"with great power come great responsabilities" Spiderman's Uncle - 2002

Parent Share
twitter facebook
Re:I don't. (Score:2, Funny)

by peepleperson ( 888013 ) writes: on Monday January 08, 2007 @02:16PM (#17511144)

Of course, everybody knows that yffect isn't a word.
It's a small village in Wales.

Parent Share
twitter facebook

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Related Links Top of the: day, week, month.

413 commentsChatGPT Leans Liberal, Research Shows
347 commentsAmazon CEO Says 'It's Probably Not Going To Work Out' For Employees Who Defy Return-to-Office Policy
327 commentsHotel Owners Start To Write Off San Francisco as Business Nosedives
323 commentsChina is Building Nuclear Reactors Faster Than Any Other Country
315 commentsChina is Calling in Loans To Dozens of Countries

The use of money is all the advantage there is to having money. -- B. Franklin