Version française
Home     About     Download     Resources     Contact us    
Browse thread
[Caml-list] How to secure an OCaml server
[ Home ] [ Index: by date | by threads ]
[ Search: ]

[ Message by date: previous | next ] [ Message in thread: previous | next ] [ Thread: previous | next ]
Date: -- (:)
From: David MENTRE <dmentre@l...>
Subject: Re: [Caml-list] How to secure an OCaml server
David MENTRE <dmentre@linux-france.org> writes:

> I would like to secure my server against usual attacks (buffer overflow,
> etc.).
>
> While there is plenty of doc for C and C++, there is nothing for
> OCaml. At what kind of issues should I look to avoid attacks? Has
> anybody written a documentation or a tool to secure OCaml applications?

Judging from answers I've received, I've probably been not clear
enough. I know that the security topic is large but I've explicitely not
mentionned cryptographic issues (authentication, information hiding,
etc.). I just want to secure my server enough so that a bad guy can't
crash it or launch a shell with it. I've left other security topics to
the near future.

I'm not the first one to write a server in OCaml, so I wanted to use
experience of previous work. If nobody has written such a document, I'll
might give it a try.

Any useful comments still appreciated,
Yours,
d.
-- 
 David Mentré <dmentre@linux-france.org>

-------------------
To unsubscribe, mail caml-list-request@inria.fr Archives: http://caml.inria.fr
Bug reports: http://caml.inria.fr/bin/caml-bugs FAQ: http://caml.inria.fr/FAQ/
Beginner's list: http://groups.yahoo.com/group/ocaml_beginners