Revision as of 00:11, 11 May 2005 edit QuickFox (talk \| contribs) 24 edits Turned "aspect oriented programming" into a link to article ← Previous edit		Revision as of 23:09, 18 June 2005 edit undo SteveJ123 (talk \| contribs) 1 edit mNo edit summary Next edit →
Line 8: <!-- Please expand this article. These random notes should be changed to a more coherent article. --> * One of the most common problems is unchecked use of constant-size structures and functions for dynamic-size data (the [[buffer overflow]] problem). This is especially common for [[string]] data in [[C programming language\|C]]. C library functions like <tt>gets~~</tt> and <tt>scanf~~</tt> should never be used since the maximum size of the input buffer is not passed as an argument. C library functions like <tt>scanf</tt> can be used safely, but require care with the selection of safe format strings. * Never make code more complex than necessary. Complexity breeds bugs, including security problems. * Either leave the code available to everyone on the Net (see [[Free software]] or [[Open Source Definition]]) or hire someone who will perform a software [[security audit]]. * If possible, reuse code instead of writing from scratch. * Encrypt all important data transmitted over networks. Do not attempt to implement your own encryption scheme, but use a proven one instead. * All data is important until proven otherwise. * All code is insecure until proven otherwise.

Defensive programming: Difference between revisions