Techniques for Writing Secure Code
Principle of Least Privilege
Make sure your program can do no more than it should. May require assistance
from your sysadmin
- Run as an unprivileged system user so if it get compromised,
the attacker can do little to the system
- Consult with sysadmin about placing server behind a firewall and
restricting it's network access out. In the event of a compromise,
it's now harder to move on to other targets