'Re: "... creates temporary files in an insecure manner." Tutorial?'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       debian-security
Subject:    Re: "... creates temporary files in an insecure manner."  Tutorial?
From:       Javier =?iso-8859-1?Q?Fern=E1ndez-Sanguino_Pe=F1a?= <jfs () computer ! org>
Date:       2006-11-23 20:47:33
Message-ID: 20061123204733.GA26916 () javifsp ! no-ip ! org
[Download RAW message or body]

On Mon, Nov 20, 2006 at 09:33:14PM -0700, s. keeling wrote:
> 
> I'm wondering whether there might be some "secure temporary file
> checklist" which should be part of the
> indoctrination<ESC><BackSpace>initiation phase for DDs?

Well, I tried to write some information for DDs in the "Securing Debian
Manual": Chapter 9 - Developer's Best Practices for OS Security
http://www.debian.org/doc/manuals/securing-debian-howto/ch9.en.html
and this year at Debconf 6:
- slides: http://people.debian.org/~jfs/debconf6/weeding_security_bugs.pdf
  and (slides + examples) at:
  http://meetings-archive.debian.net/pub/debian-meetings/2006/debconf6/slides/Weeding_out_security_bugs-Javier_Fernandez_Sanguino/
                
- video: available at
  http://meetings-archive.debian.net/pub/debian-meetings/2006/debconf6/
  
HTH

Javier


["signature.asc" (application/pgp-signature)]
-- 
To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org


[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic