On Sun Mar 14 02:32:35
> hi,
> Learning C/C++ can be quite danting to anyone....
>> Quoted from strcpy man page:
>>>> If the destination string of a strcpy() is not large enough (that is,
>> if the programmer was stupid/lazy, and failed to check the size
>> before
>> copying) then anything might happen. Overflowing fixed length
>> strings
>> is a favourite cracker technique.
> Is there a list of ways to make sure that you are doing the correct
> thing when it comes to writing C/C++ i.e as the above points out, or is
> it just trial and error.You can figure out the simple thing about
> C/C++ but when it come to more complex stuff and learning bad habbits
> can be a pain and costly,anyone any idea on what book/website i might
> look at.
> Nils.
Maybe this book might be of help to you,
http://www.dwheeler.com/secure-programs/
especially
http://www.dwheeler.com/secure-programs/Secure-Programs-HOWTO/buffer-overflow.html
Hope it helps (even though your post was a while ago...)
Regards, R
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
