SANS Institute: Top 25 Programming Mistakes
The SANS Institute has published a list of the 25 most dangerous programming errors - and how to fix them. See CWE/SANS TOP 25 Most Dangerous Programming Errors. Two of the errors accounted for 1.5 million breaches during 2008, so it is important for programmers to thoroughly study this relatively short list so that they don't have to mop up the mess later on.
SQL injection, cross-site scripting and input validation are well known in programming and usually mitigated appropriately, but others are more subtle and may only be experienced as denials of service or as exploitations of error conditions.
Look at the list, think hard, set some proper analysis time aside. It could save you a lot of embarrassment in the future.
TweetComments
It's quiet in here...Add your commentRecent Updates:
19 May : Heating Oil Thefts - Stay Alert!19 May : Pro Blaze Overshoes pass the test
15 May : Get a CentOS Server Web-Ready
13 May : Keeping your iPhone secure
06 May : Nero, Claudius and a rather dead mouse
19 May : Domestic Heating Oil Prices: Know the Market!
19 May : Sports Gear: Under Test
15 May : Rackspace Cloud Hosting
13 May : iPhone 4
06 May : Cats
19 Mar : Time Trial Results
25 Nov : Piano for the Amateur
14 Nov : Measure
02 Nov : Book Reviews
12 Oct : Simple Programming Exercises
