Sans top 25 dangerous programming errors.
Published: 2009-02-12
Category: Scribbles
Tags: sose, security, development
Language: [English]
page views: 480



[I didn't blog about this since I assumed most people would grab these headlines, but since i found a few inteligent people not having heard about them, I'd rather help spread the word...]

A few weeks back the SANS institute published a compilation of the top 25 most dangerous errors developers can make.

http://www.sans.org/top25errors/

It was compiled by a long list of corporate hot-shots but is mostly a good listing of proper common sense. Most code reviews would catch these things.... Hmmm... code reviews.. now there is a novelty!...

Of course the big software pushers are going to try to sell you semi-automated tools for detecting+fixing the stuff.  Also expect new empty marketing BS like "SANS25 verified" on software. But such is the state of IT.