statement: If you have reached this page looking for some good coding patterns, try maybe letter ;) For know this is only information about quite good book about secure programming.

Unfortunately I don’t have commercial experience working with C language. It simply means, that every time when I am coding something I need to search for some good practices in secure coding, but not only.

Yesterday, during my short train trip to home (everyday I have to travell about 30km by train in both sides, from and to Terrassa) I was playing with string concatenation in my new project. Fortunatelly, valgrind shows no memory leaks, but friend pointed me two places where malformed input could leads into vulnerability…

So, I decided to find good source of knowledge, preferable in one [e]book.

After one hour of research I found two worh mentioning positions:

* The CERT C Secure Coding Standard: * Secure Coding in C and C++, Adobe Reader

After fast investigation I decided to buy first one – almost two times bigger and focused only on C.

Today I spent my morning journey reading, reading and reading. I will try to write more about it later – but for now I can recommend it without any doubts. Many important and very usefeul information/advices/practises gathered into one place. Have a good reading.