Thursday, May 17, 2007

Christof on Secure error handling

Christof Wollenhaupt [MVP] shows us in "Secure error handling", how careful we have to be as developers in securing our applications and data.

Recently I reviewed a Visual FoxPro application for security issues. This application was using a popular file encryption DLL to transparently encrypt all tables... Yet, it was very easy to decrypt all files, because this particular application wasn't protecting the start up process properly.
Let his lesson sink in.

[Typo fixed]

No comments:

Post a Comment