Fundamentals of Secure Programming

Minimise code in critical sections
Be paranoid about user input
Least privilege
- Drop privilege as soon as possible
- Fork vulnerable code and run at lower privilege
K.I.S.S.
Read David Wheeler's Secure Programming How-To
http://www.dwheeler.com/secure-programs/

Minimise code in critical sections