« Rev
@programminginc   1233
Fwd »


Jussi
"Never use gets(). Because it is impossible to tell without knowing the data in advance how many characters gets() will read, and because gets() will continue to store characters past the end of the buffer, it is extremely dangerous to use. It has been used to break computer security. Use fgets() instead."
Anonymous
does it allow you to define the max length? if the input size is unknown?
U have to give the size of array when declared. Then use gets() fun This will take input and store it until enter key is pressed
Jussi
Yes..
read man gets
Jussi
it will buffer overflow
Anonymous
Ok
klimi
Welcome
Ak47
Any one from software engineering feild?
Ak47
Who have good knowledge about secure software development
Ak47
Yeah
Which book is good on secure software development
MᏫᎻᎯᎷᎷᎬᎠ
Google knows better
Ak47
Okay
MᏫᎻᎯᎷᎷᎬᎠ
Alright
Ak47
Thanks
Parra
developing things related to security (hacking) or developing software in a good development process, reducing bugs and errors?
klimi
Welcome
Anonymous
guys who has this book pdf ?
Anonymous
BinaryByter
/ban begs 4 books
MᏫᎻᎯᎷᎷᎬᎠ
Wow
klimi
Whew
klimi
I do
klimi
We were nearly 6400 ppl
Roxifλsz 🇱🇹
We were nearly 6400 ppl
Don't worry, the supply of Indians is infinite
klimi
UwU
Roxifλsz 🇱🇹
Thank you big friend
No problem smol friend
BinaryByter
I do
lol send in pm pl0x, i need stuff to read
BinaryByter
thx
Parra
Yes
yes?
Parra
it's an A or B question
Parra
you have two options to choose
klimi
thx
Np np
Ak47
yes?
1st
Parra
ok, now ask what you want to know about security
Ak47
How build secure software application?
Parra
that's really difficult, specially in c/c++
Parra
for example, linux kernel is continuously proactively being improved in terms of security
Ak47
In other oop languages
Ak47
Like java
Parra
some of the worst security bugs have been there during many years
Parra
in OO it's the same, but at least in java or c# you don't have too much control over low level, so it's easier to reduce some security bugs
Ak47
How to reduce bug or any security related problems?
BinaryByter
start by being good
Parra
How to reduce bug or any security related problems?
valgrind, and actively testing your software
Ak47
With practical knowledge
Parra
Can u sugget me good book?
no, i use Google normally
Ak47
Good website on software testing and debugging?
Parra
security problems will be always present in c/c++
Ak47
But I want to develop app with java
Parra
searching in Google security c++, first find: https://insights.sei.cmu.edu/sei_blog/2017/04/cert-c-secure-coding-guidelines.html
Parra
why are you asking about security?
Ak47
I'm beginner in cyber security
Parra
But I want to develop app with java
https://www.oracle.com/technetwork/java/seccodeguide-139067.html
Ak47
And I want practical knowledge about software security
Parra
I'm beginner in cyber security
then learn c/c++ and asm, not java
Ak47
I have basic knowledge about c/c++
Parra
java hides most details about security, so you wont be able to learn in the same level of detail as c/c++
Parra
learn how stack works, memory management, linux kernel..
Parra
linux is good to learn security
Ak47
Can you suggest good topic ?
Ak47
Like a university syllabus
Ak47
Bcz if I have topics about what to learn , I can find all
Parra
I don't read books usually, neither things related to university, it's not interesting to me in general
Parra
i find one topic and i keep finding info, and this forces me to learn another topic, and so on
Parra
for example, i search for ROP
Parra
then this forces me to learn stack
Parra
then that forces me to learn intel instruction set
Ak47
I learning topics as my requirements
« Rev
@programminginc   1233
Fwd »