A Developers Security Bugs Primer

A Developers Security Bugs Primer 35

Posted by CmdrTaco on Sunday February 25, 2007 @12:08PM from the important-stuff-here-people dept.

CowboyRobot writes "ACM Queue's current issue on Open Source Security includes a short article by Eric Allman of Sendmail on how to handle security bugs in your code. "Patch with full disclosure. Particularly popular in the open source world (where releasing a patch is tantamount to full disclosure anyway), this involves opening the kimono and exposing everything, including a detailed description of the problem and how the exploit works... Generally speaking, it is easier to find bugs in open source code, and hence the pressure to release quickly may be higher.""

A Developers Security Bugs Primer

This discussion has been archived. No new comments can be posted.

Search 35 Comments Log In/Create an Account

Comments Filter:

Re:Sendmail? (Score:3, Interesting)

by myowntrueself ( 607117 ) writes: on Sunday February 25, 2007 @09:57PM (#18148088)

Getting advice on how to handle security bugs in your software from someone who works on Sendmail

It could be worse; it could be advice on how to write readable code from the person who wrote qmail.

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

A Developers Security Bugs Primer 35

A Developers Security Bugs Primer More Login

A Developers Security Bugs Primer

Re:Sendmail? (Score:3, Interesting)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot