From the course: Programming Foundations: Secure Coding
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
File and I/O issues
From the course: Programming Foundations: Secure Coding
File and I/O issues
- The file system can be a dangerous place for applications, and bad actors love to leverage it to find exploits. Attacks of the file system can be relatively easy to exploit, because it's a great learning arena for new attackers. Furthermore, the results can be devastating to the systems. As we look at the risk management flow, the ease of attack in conjunction with the damage potential, should yield a clear need to take these seriously. There are several areas we need to focus on with file systems and file input and output. The first we will discuss is often more infrastructure focused, but in a devops world, the line is very blurred. You need to ensure your application is run in a user process that is controlled. You should only provide access to the file system for that user that the application needs in order to run. This is often considered in server side application, especially in the Linux world, but the same cannot…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
(Locked)
Error handling issues3m 21s
-
(Locked)
Logging and output issues4m 9s
-
(Locked)
Internal data management issues3m 9s
-
(Locked)
Configuration issues4m 29s
-
(Locked)
Database issues3m 51s
-
(Locked)
File and I/O issues3m 54s
-
(Locked)
Memory management issues4m 34s
-
(Locked)
Dependency issues2m 46s
-
(Locked)
-
-
-