Linux and Technology blog

October 16, 2006

Google Code Search peers into programs’ flaws

Filed under: Hacking, Software — rakeshvk @ 5:13 pm

Want to know which programs have security issues that need to be fixed? Using Google Code Search, finding likely candidates is a snap.

Security professionals warned developers on Thursday that they need to be aware that their open-source repositories can now be easily mined, allowing attackers to target programs that are likely to be flawed. While Google could previously be used to look for specific strings, now the search engine riffles through code that much better.

“It is going deeper into places where code is publicly available, and it’s clearly picking up stuff really well,” said Chris Wysopal, chief technology officer of security startup Veracode. “This makes it easier and faster for attackers to find vulnerabilities–not for people that want to attack a (specific) Web site, but for people that want to attack any Web site.”

Read the full article

Advertisements

Leave a Comment »

No comments yet.

RSS feed for comments on this post. TrackBack URI

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Blog at WordPress.com.

%d bloggers like this: