On Fri, Apr 18, 2014 at 01:18:02AM +0100, Kevin Chadwick wrote: > There are tools such as static analysers and Todd and Theo's talk on > strl*, porting security guidelines etc. and many books (that may or may > not recommend c++ ;-)) and even Ada to C conversion but with added > worries about compilers and obfuscation or the Go language where > applicable but is there a particular reference many recommend or use to > brush up for secure C coding in a fashion akin to K&R's "C bible" being > recommended by past threads for learning C and referencing? > I can recommend "Secure Coding in C and C++" by Seacord. It's sort of a handbook style, with some intro and discussion in the early chapters and then a sort of cookbook style later on.
-- John D. Verne <j...@clevermonkey.org>
