Home :: International :: Manuals :: Howto :: FAQ :: Man Pages :: Email Login
 
 

 
Secure Programming for Linux and Unix HOWTO
PrevChapter 5. Validate All InputNext

5.5. File Contents

If a program takes directions from a file, it must not trust that file specially unless only a trusted user can control its contents. Usually this means that an untrusted user must not be able to modify the file, its directory, or any of its ancestor directories. Otherwise, the file must be treated as suspect.

If the directions in the file are supposed to be from an untrusted user, then make sure that the inputs from the file are protected as describe throughout this book. In particular, check that values match the set of legal values, and that buffers are not overflowed.

PrevHomeNext
File NamesUpWeb-Based Application Inputs (Especially CGI Scripts)
 
 
 
 
Google
  Web Linuxinfor   
 

Home :: Copyright :: Privacy :: Credits :: Get a free Linuxinfor Email Account

Document on this page is part of "Secure Programming for Linux and Unix HOWTO". See Index Page for more info about Authorship and Copyright.

1999-2008 Linuxinfor.com. No rights reserved.