I am looking for some rules of Thumb regarding what is improper to code in a program (say Cobol, but in general, any language) from security point of view. Are there any resources on that any where? Some examples: - Do nit use literals of variables containing Account numbers, SSNs, Etc. in your program. - Use pure programming (impure is a program that modifies it self)
Any other ideas? Itschak ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
