Please create an account to participate in the Slashdot moderation system

 


Forgot your password?
Close
typodupeerror

Submission Summary: 0 pending, 1 declined, 2 accepted (3 total, 66.67% accepted)

Security

Submission + - How do you know your code is secure?

Submitted by
bvc
bvc writes: "Marucs Ranum says: "It's really hard to tell the difference between a program that works and one that just appears to work." Then he explains how he just found a buffer overflow in Firewall Toolkit (FWTK) code he wrote in 1994. Read the whole thing here. So how do you go about making sure your code is secure? Especially if you have to write in a language like C or C++?"
Java

Submission + - Java Open Review Project

Submitted by
bvc
bvc writes: "We Launched the Java Open Review Project today. We're reviewing open source Java code all the way from Tomcat down to PetStore looking for bugs and security vulnerabilities. We're using two static analysis tools to do the heavy lifting: the open source tool FindBugs, and the commercial tool Fortify SCA. We can use plenty of human eyes to help sort through the results. We're also soliciting ideas for which projects we should be reviewing next. Please help!"

Slashdot Top Deals

In 1750 Issac Newton became discouraged when he fell up a flight of stairs.

Close