Revision as of 15:21, 11 December 2005 edit 68.166.173.49 (talk) Removed the word "pornography" that some vandal had added to the page ← Previous edit		Revision as of 12:22, 24 December 2005 edit undo Hydrargyrum (talk \| contribs) Extended confirmed users 43,643 edits m grammar Next edit →
Line 13: * If possible, reuse code instead of writing from scratch. * Encrypt/authenticate all important data transmitted over networks. Do not attempt to implement your own encryption scheme, but use a proven one instead. * All data isare important until proven otherwise. * All code is insecure until proven otherwise. * Never make programs [[setuid]] unless you're ''really'' sure it's secure. * If data isare checked for correctness, verify if ~~it's~~they are correct, not if itthey isare incorrect. Crackers are likely to invent new kinds of incorrect data. For example, if you checked if a requested file is not "/etc/passwd", a cracker might pass another

Defensive programming: Difference between revisions