Re: How to write a secure C program..
On Tue, 03 Jul 2001, SDiZ Cheng wrote:
> I am going to rewrite suexec.c of apache ( to suit my boss's need ).
> As this program is SUID, I don't want to make any mistake.
>
Are you really sure you wanna do that? As this program runs as SUID,
the programmers put really a lot of emphasize onto correctness! I think
it would be hard for you to do a job as good as the officially
distributed program.
As it is distributed in soure code, you should rather review the code
and check whether you could find any inconsistencies/errors/bugs.
--lpr
Reply to: