Difference between revisions of "Cpp Coding Standards/SECURITY"
From Apache OpenOffice Wiki
m |
|||
Line 2: | Line 2: | ||
Some errors may be entry points for malicious software. | Some errors may be entry points for malicious software. | ||
---- | ---- | ||
− | === | + | === Summary === |
− | + | ||
==== NoUnsafeFunctions ==== | ==== NoUnsafeFunctions ==== | ||
Don't use functions that are known to have security issues (strcpy etc.) | Don't use functions that are known to have security issues (strcpy etc.) | ||
Line 15: | Line 14: | ||
==== NoIntegerOverflow ==== | ==== NoIntegerOverflow ==== | ||
Be aware that integers have limited range. | Be aware that integers have limited range. | ||
+ | |||
+ | ---- | ||
+ | === Explanations === | ||
---- | ---- | ||
[[Category:Coding Standards]] | [[Category:Coding Standards]] |
Revision as of 18:19, 27 November 2006
Contents
Security
Some errors may be entry points for malicious software.
Summary
NoUnsafeFunctions
Don't use functions that are known to have security issues (strcpy etc.)
ValidateInput
Validate all input coming from external.
NoBufferOverflow
Check range and validity of buffers.
NoIntegerOverflow
Be aware that integers have limited range.