[prev in list] [next in list] [prev in thread] [next in thread]
List: debian-security
Subject: Re: "... creates temporary files in an insecure manner." Tutorial?
From: Javier =?iso-8859-1?Q?Fern=E1ndez-Sanguino_Pe=F1a?= <jfs () computer ! org>
Date: 2006-11-23 20:47:33
Message-ID: 20061123204733.GA26916 () javifsp ! no-ip ! org
[Download RAW message or body]
On Mon, Nov 20, 2006 at 09:33:14PM -0700, s. keeling wrote:
>
> I'm wondering whether there might be some "secure temporary file
> checklist" which should be part of the
> indoctrination<ESC><BackSpace>initiation phase for DDs?
Well, I tried to write some information for DDs in the "Securing Debian
Manual": Chapter 9 - Developer's Best Practices for OS Security
http://www.debian.org/doc/manuals/securing-debian-howto/ch9.en.html
and this year at Debconf 6:
- slides: http://people.debian.org/~jfs/debconf6/weeding_security_bugs.pdf
and (slides + examples) at:
http://meetings-archive.debian.net/pub/debian-meetings/2006/debconf6/slides/Weeding_out_security_bugs-Javier_Fernandez_Sanguino/
- video: available at
http://meetings-archive.debian.net/pub/debian-meetings/2006/debconf6/
HTH
Javier
["signature.asc" (application/pgp-signature)]
--
To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic