rlogin(1): The Untold Story
Coding defects account for a significant portion of the reports received by the CERT Coordination Center (CERT/CC). Through in-depth analysis of these reports and generalizing our findings from those analyses, we have begun to create guidelines for mitigation strategies for existing defects and avoidance strategies when coding new software. In this document, we report the results of our analysis of the well-known defect in the rlogin program. We discuss the coding defect in detail, three mitigation strategies devised to remedy the defect, and two avoidance strategies offered as a guide to reducing the instances of similar coding defects in new programs. We end with three design notes aimed at eliminating these defects at the hardware and protocol design level.
Technical Report
CMU/SEI-98-TR-017
November 1998
Cite This Report
SEI:
Rogers, Lawrence; rlogin(1): The Untold Story (CMU/SEI-98-TR-017). Software Engineering Institute, Carnegie Mellon University, 1998. http://www.sei.cmu.edu/library/abstracts/reports/98tr017.cfm
IEEE:
L. Rogers, "rlogin(1): The Untold Story," Software Engineering Institute, Carnegie Mellon University, Pittsburgh, Pennsylvania, Technical Report CMU/SEI-98-TR-017, 1998. http://www.sei.cmu.edu/library/abstracts/reports/98tr017.cfm
APA:
Rogers, L., (1998) . rlogin(1): The Untold Story (CMU/SEI-98-TR-017). Retrieved May 24, 2012, from the Software Engineering Institute, Carnegie Mellon University website: http://www.sei.cmu.edu/library/abstracts/reports/98tr017.cfm
CHI:
Rogers, Lawrence, rlogin(1): The Untold Story (CMU/SEI-98-TR-017). Pittsburgh, PA: Software Engineering Insitute, Carnegie Mellon University, 1998. http://www.sei.cmu.edu/library/abstracts/reports/98tr017.cfm
MLA:
Rogers, L., 1998. rlogin(1): The Untold Story (Technical Report CMU/SEI-98-TR-017). Pittsburgh: Software Engineering Insitute, Carnegie Mellon University. http://www.sei.cmu.edu/library/abstracts/reports/98tr017.cfm
Find Us Here
Share This Page
For more information
