Actually, I'd -much- prefer some way to spot bugs. Didn't I read just recently about some such product inducing a bug that opened a gaping security hole?
-----Original Message----- From: IBM Mainframe Discussion List [mailto:[EMAIL PROTECTED] On Behalf Of Itschak Mugzach Sent: Monday, August 11, 2008 2:31 AM To: [email protected] Subject: Cobol malicious code lookup I know some products that checks program complexity, and even those who look into specific command usage. But this time I am looking for a product to analyse mainframe traditional language (Cobol, PLI, etc) for malicious code. I have some ideas like the usage of string command, Input that come outside a file record, etc. What are you using to analyse your code? NOTICE: This electronic mail message and any files transmitted with it are intended exclusively for the individual or entity to which it is addressed. The message, together with any attachment, may contain confidential and/or privileged information. Any unauthorized review, use, printing, saving, copying, disclosure or distribution is strictly prohibited. If you have received this message in error, please immediately advise the sender by reply email and delete all copies. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
