RE: Microsoft Writing Secure Code

I have read about the first third after finding it in a used book store (I am a 
CISSP with a focus on secure programming and always look for books like this).  
I was very happy with the writing and the code examples.  My interest is in 
platform independant programming which is why I left off at that point (it is 
still on my pile of books to read, but I am not so sure I will have time to get 
back to it).  I have had a small amount of contact with the authors and seen 
some of their other writings and they impress me as people who know their 
stuff, so would recommend it to anyone interested in secure programming with 
Visual C++.  The first third is a great introduction in information security in 
general and secure programming in particular, so for the price of a used book 
it is worth while on any C/C++ coder's bookshelf.

Keith Oxenrider

------- Original Message -------
On Thu, 9 Dec 2004 09:57:53 +0000 Rui Covelo wrote:Hi!

I was looking for some opinions about the book "Writing Secure Code"
from Microsoft press. The book is already "old" but I only got to read
it now... well.... some of it. I searched the mailing list archive for
"microsoft writing secure code" but didn't find anything related so I
guess it hasn't been discussed before or I don't know how to search
the mailing list archive correctly. If that's the case, please forgive
me.

I was wondering if any of you have read it and what you think about
it. Do you find it useful or plain microsoft propaganda (like I read
somewhere else)?