Bibliography

[biblio19_01] (Howard, LeBlanc, and Viega 2005) Howard,Michael, DavidLeBlanc, and JohnViega. 19 Deadly Sins of Software Development. New York, NY: McGraw-Hill, 2005. Chapter 1, “Buffer Overruns.”

[biblio19_02] (Howard 2004) Howard,Michael. “Buffer Overflow in Apache 1.3.xx fixed on Bugtraq—the evils of strncpy and strncat,” http://blogs.msdn.com/michael_howard/archive/2004/10/29/249713.aspx. October 2004.

[biblio19_03] (Miller and de Raadt 1999) Miller,ToddC., and TheodeRaadt. USENIX Annual Technical Conference, “strlcpy and strlcat – Consistent, Safe String Copy and Concatenation,” http://www.usenix.org/events/usenix99/full_papers/millert/millert_html/index.html. June 1999.

Get Security Development Lifecycle now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial