[GPC] OWASP Vicnum
Paulo Coimbra
paulo.coimbra at owasp.org
Mon Jan 11 14:19:19 EST 2010
Thanks much, Greg. Please do not hesitate and get back to me if you think I can be of any assistance.
Regards,
Paulo Coimbra,
<https://www.owasp.org/index.php/Main_Page> OWASP Project Manager
From: Greg [mailto:grishmoney at yahoo.com]
Sent: segunda-feira, 11 de Janeiro de 2010 17:58
To: mkraushar at gmail.com; paulo.coimbra at owasp.org
Cc: 'Greg'; tomb at owasp.org
Subject: RE: OWASP Vicnum
Hey guys - I'll review the project in short order. - Greg
--- On Sun, 1/10/10, Paulo Coimbra <paulo.coimbra at owasp.org> wrote:
From: Paulo Coimbra <paulo.coimbra at owasp.org>
Subject: RE: OWASP Vicnum
To: mkraushar at gmail.com
Cc: "'Greg'" <GrishMoney at yahoo.com>, tomb at owasp.org
Date: Sunday, January 10, 2010, 12:41 PM
Hello Mordecai,
Thanks for getting back to me. I’ve already updated the project details page. Would you like to have an OWASP email address? If so, please let me know and I’ll set it up for you.
Please keep me informed about the progresses made.
Greg,
Please accept my congratulations on being father!
Many thanks, best regards,
Paulo Coimbra,
<https://www.owasp.org/index.php/Main_Page> OWASP Project Manager
From: Mordecai Kraushar [mailto:mordecai at ciphertechs.com]
Sent: domingo, 10 de Janeiro de 2010 04:56
To: paulo.coimbra at owasp.org
Cc: mkraushar at gmail.com
Subject: RE: OWASP Vicnum
Apologies for being late in responding and happy new year,
I am trying to do some maintenance on my owasp accounts and I would like to have the owasp project page to reference me as user: Mordecai Kraushar and not user:Vicnum as I hope to get involved in other projects.
I also get mail both from owasp groups as well as yourself to my ciphertechs email address, I would like that moved to mkraushar at gmail.com
And I will be reviewing those links.
Greg just had a child , he might be a little late in reviewing J
Thanks;
Mordecai
From: Paulo Coimbra [mailto:paulo.coimbra at owasp.org]
Sent: Thursday, January 07, 2010 1:57 PM
To: tomb at owasp.org; 'Greg'; Mordecai Kraushar
Cc: 'GPC'
Subject: RE: OWASP Vicnum
Hello Mordecai, Tom and Greg,
Hope you all are well and wish you a happy New Year.
I am writing to let you know that I’ve updated the OWASP Vicnum Project details page <http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project> http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project so as to include the project’s latest release, the version 1.4.
I’ve prepared the release to be assessed. If you agree in doing so please use the forthcoming links:
- Mordecai: <http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project_-_Release_1.4_-_Assessment> http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project_-_Release_1.4_-_Assessment
- Greg Pergament: <http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project_-_Release_1.4_-_Assessment#tab=First_Reviewer> http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project_-_Release_1.4_-_Assessment#tab=First_Reviewer
- Tom: <http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project_-_Release_1.4_-_Assessment#tab=Second_Reviewer> http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project_-_Release_1.4_-_Assessment#tab=Second_Reviewer
- Assessment criteria: <http://www.owasp.org/index.php/Assessing_Project_Releases> http://www.owasp.org/index.php/Assessing_Project_Releases
Also, for an example of a well succeeded review, please check these links:
<http://www.owasp.org/index.php/GPC_Project_Details/OWASP_JBroFuzz> http://www.owasp.org/index.php/GPC_Project_Details/OWASP_JBroFuzz
<http://www.owasp.org/index.php/Category:OWASP_JBroFuzz_Project_-_Release_1.7> http://www.owasp.org/index.php/Category:OWASP_JBroFuzz_Project_-_Release_1.7
Should you have any further questions please do not hesitate and get back to me.
Many thanks, best regards,
Paulo Coimbra,
<https://www.owasp.org/index.php/Main_Page> OWASP Project Manager
From: Paulo Coimbra [mailto:paulo.coimbra at owasp.org]
Sent: quinta-feira, 24 de Setembro de 2009 17:40
To: 'tomb at owasp.org'; 'Greg'
Cc: 'GPC'; 'Mordecai Kraushar'
Subject: RE: OWASP Vicnum
Hello Greg and Tom,
I am writing just to give you a heads-up saying the Vicnum Project’s First Release (Vicnum 1.2) <http://www.owasp.org/index.php/OWASP_Vicnum_Project_First_Release> http://www.owasp.org/index.php/OWASP_Vicnum_Project_First_Release is ready to be evaluated.
For your information, in terms of OWASP evaluation process, in accordance with <http://www.owasp.org/index.php/Assessment_Criteria_v2.0> http://www.owasp.org/index.php/Assessment_Criteria_v2.0, we expect you fill in respectively in here <http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project_-_First_Release_-_Assessment#tab=First_Reviewer> http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project_-_First_Release_-_Assessment#tab=First_Reviewer (Greg) and here <http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project_-_First_Release_-_Assessment#tab=Second_Reviewer> http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project_-_First_Release_-_Assessment#tab=Second_Reviewer (Tom).
I thank both in advance. Should you have any further questions please do not hesitate and get back to me.
Many thanks, best regards,
Paulo Coimbra,
<https://www.owasp.org/index.php/Main_Page> OWASP Project Manager
From: Paulo Coimbra [mailto:paulo.coimbra at owasp.org]
Sent: quinta-feira, 24 de Setembro de 2009 17:20
To: 'Mordecai Kraushar'
Cc: 'GPC'; 'tomb at owasp.org'; 'Greg'
Subject: RE: OWASP Vicnum
Hello Mordecai,
Thanks much for getting back to me and for filling in your self-assessment. As for the methodological questions you have raised, as for now, I will leave them for our GPC as I am almost sure one of its members will step in into this thread.
Being so, in my view, your project is ready to be assessed by its external reviewers. Well done!
Also, as you have requested, I have updated the “verbage on the owasp project overview page”.
Should you have any further questions please do not hesitate and get back to me.
Many thanks, best regards,
Paulo Coimbra,
<https://www.owasp.org/index.php/Main_Page> OWASP Project Manager
From: Mordecai Kraushar [mailto:mordecai at ciphertechs.com]
Sent: segunda-feira, 21 de Setembro de 2009 14:46
To: paulo.coimbra at owasp.org
Cc: 'GPC'; tomb at owasp.org; 'Greg'
Subject: RE: OWASP Vicnum
Hi Paulo;
Those two items have been updated.
In general some of the questions and responses do not really match up very well with my project. Vicnum is intended to be modified – for example setting up a capture the flag exercise with Vicnum for high school kids will be different than doing it for experienced web auditors.
Also how can a vulnerable web application ever really be stable J
Can you update the verbage on the owasp project overview page <http://www.owasp.org/index.php/Category:OWASP_Project#tab=Alpha_Status_Projects> http://www.owasp.org/index.php/Category:OWASP_Project#tab=Alpha_Status_Projects to :
A flexible web application showing common vulnerabilities such as cross site scripting and session management issues. Helpful to IT auditors honing web security skills and to those setting up 'capture the flag' exercises.
Thanks much
Mordecai
From: Paulo Coimbra [mailto:paulo.coimbra at owasp.org]
Sent: Monday, September 21, 2009 7:59 AM
To: Mordecai Kraushar
Cc: 'GPC'; tomb at owasp.org; 'Greg'
Subject: RE: OWASP Vicnum
Mordecai,
I thank the materials you have sent off. Everything has been uploaded <http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project> http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project.
We (GPC + I) certainly don’t want to bury you under systematic new requisites, although, as we see the Release Flyer as an important piece to publicise each individual project’s release <http://www.owasp.org/index.php/OWASP_Vicnum_Project_First_Release> http://www.owasp.org/index.php/OWASP_Vicnum_Project_First_Release, if you found the spare cycles to write it down, we would thank you.
Meanwhile, in terms of pushing the assessment up the ladder, I recommend you fill in your pre-assessment <http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project_-_First_Release_-_Assessment> http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project_-_First_Release_-_Assessment. After having done that, please give me a heads-up so as to I can ask the reviewers for them to perform their reviews as well. As soon as all the three reviews have been done, we can consider the assessment process is finished and will move your project to its new quality category within OWASP Project’s page.
To finish up I send congrats on the progress already. For your information I have divulged you project in my Twitter account and the number of people that has consulted the link showed a very stimulant interest.
Should you have any further questions please do not hesitate and get back to me.
Paulo Coimbra,
<https://www.owasp.org/index.php/Main_Page> OWASP Project Manager
From: Mordecai Kraushar [mailto:mordecai at ciphertechs.com]
Sent: segunda-feira, 21 de Setembro de 2009 00:09
To: paulo.coimbra at owasp.org; tomb at owasp.org; 'Greg'
Subject: RE: OWASP Vicnum
Project flyer and mini prizo attached.
And roadmap updated on OWASP web site.
Ledt me know if there is anything I can do to move the assessment along.
Thanks.
Mordecai
From: Paulo Coimbra [mailto:paulo.coimbra at owasp.org]
Sent: Wednesday, September 09, 2009 1:16 PM
To: Mordecai Kraushar; tomb at owasp.org; 'Greg'
Cc: 'Global Projects Committee'
Subject: RE: OWASP Vicnum
Mordecai,
Perfect! Just let me know if you think I and/or the Global Projects Committee can be of any help.
Thank you,
Paulo Coimbra,
<https://www.owasp.org/index.php/Main_Page> OWASP Project Manager
From: Mordecai Kraushar [mailto:mordecai at ciphertechs.com]
Sent: quarta-feira, 9 de Setembro de 2009 18:10
To: paulo.coimbra at owasp.org; tomb at owasp.org; 'Greg'
Cc: 'Kate Hartmann'
Subject: RE: OWASP Vicnum
Paulo
Yes it would be great to have it up the ladder by our Mid October meeting, and I hope to have uploaded to sf by next week.
New vicnum is not substantially different than old vicnum but I am planning on packaging it into a vmware so installers don’t have to fuss with apache settings…
mordecai
From: Paulo Coimbra [mailto:paulo.coimbra at owasp.org]
Sent: Wednesday, September 09, 2009 12:10 PM
To: Mordecai Kraushar; tomb at owasp.org; 'Greg'
Cc: 'Kate Hartmann'; 'Global Projects Committee'
Subject: RE: OWASP Vicnum
Hello Mordecai,
Although it’s obvious you decide the pace by which the Vicnum does its way up the ladder, please allow me to challenge you to have the project assessed before its presentation to the NY Chapter as I believe it could mean good marketing for both the project and the new OWASP assessment methodology.
Independently of your ultimate decision, please give me a heads-up as soon as you have the data below requested/the new vicnum version ready to be uploaded.
Wish you a good work. Thank you for supporting OWASP.
Best regards,
Paulo Coimbra,
<https://www.owasp.org/index.php/Main_Page> OWASP Project Manager
From: Mordecai Kraushar [mailto:mordecai at ciphertechs.com]
Sent: terça-feira, 8 de Setembro de 2009 22:34
To: paulo.coimbra at owasp.org; tomb at owasp.org; 'Greg'
Cc: 'Kate Hartmann'; 'Global Projects Committee'
Subject: RE: OWASP Vicnum
Hi Paulo
Vacation a bit too short …
I did make some updates to the OWASP project description over the weekend.
Note I will be presenting vicnum to the NY chapter in Mid October and am preparing some slides and documentation.
A newer vicnum with minor updates should also be uploaded shortly to sourceforge.
mordecai
From: Paulo Coimbra [mailto:paulo.coimbra at owasp.org]
Sent: Tuesday, September 08, 2009 7:34 AM
To: Mordecai Kraushar; tomb at owasp.org; 'Greg'
Cc: 'Kate Hartmann'; grishmoney at yahoo.com; 'Global Projects Committee'
Subject: RE: OWASP Vicnum
Hello Mordecai,
Hope you have had a restful vacation.
As for moving your project along it seems to me that we are just a few steps from being able to assess your release for Stable release status (former Release Quality).
Since the new project identification tab has been set up, before beginning your self-assessment <http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project_-_First_Release_-_Assessment#tab=Project_Leader_for_this_Release> http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project_-_First_Release_-_Assessment#tab=Project_Leader_for_this_Release I ask if you are kind enough to send me off the following data:
A. PROJECT
1. Project Flyer/Pamphlet (PDF file) ( <http://globalprojectscommittee.wordpress.com/2009/07/21/what-is-this-project-flyerpamphlet-thing/> http://globalprojectscommittee.wordpress.com/2009/07/21/what-is-this-project-flyerpamphlet-thing/),
2. Conference style presentation that describes the project in at least 3 slides ( <http://globalprojectscommittee.wordpress.com/2009/07/27/what-is-the-3x-slide-presentation-thing/> http://globalprojectscommittee.wordpress.com/2009/07/27/what-is-the-3x-slide-presentation-thing/)
3. Project Roadmap <http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project-Roadmap> http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project-Roadmap
B. RELEASE
1. Please confirm this link <http://sourceforge.net/projects/vicnum/files/vicnum11/vicnum11/vicnum11.zip/download> http://sourceforge.net/projects/vicnum/files/vicnum11/vicnum11/vicnum11.zip/download contains the latest version,
2. Release main features,
3. Release Flyer/Pamphlet,
4. Release Roadmap <http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project_Project_-_First_Release_-_Roadmap> http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project_Project_-_First_Release_-_Roadmap
5. Release Main Links (other release links, if any, different from the download one)
As soon as you have sent the above mentioned, I will upload it and your self-assessment can begin. Thereafter, I will ask both of the reviewers to come along and perform their own reviews. In the end of this process, hopefully, we should be able to move your project to the top of our Project’s page <http://www.owasp.org/index.php/Category:OWASP_Project> http://www.owasp.org/index.php/Category:OWASP_Project and efforts to publicize your work will be done.
Should you have further inquiries please do not hesitate and get back to me.
Many thanks, best regards,
Paulo Coimbra,
<https://www.owasp.org/index.php/Main_Page> OWASP Project Manager
From: Mordecai Kraushar [mailto:mordecai at ciphertechs.com]
Sent: quinta-feira, 27 de Agosto de 2009 20:01
To: tomb at owasp.org; Paulo Coimbra; Greg
Cc: 'Kate Hartmann'; grishmoney at yahoo.com; 'Global Projects Committee'
Subject: RE: OWASP Vicnum
All;
All;
For sure anything that can be done to move the project along would be great.
Tom, are you in as my second reviewer ?
Note I am on away on vacation until 9/7 with little Net contact and I have cc’ed Greg on this.
mo
From: Tom Brennan [mailto:tomb at owasp.org]
Sent: Thursday, August 27, 2009 1:22 PM
To: Paulo Coimbra
Cc: 'Kate Hartmann'; Mordecai Kraushar; grishmoney at yahoo.com; 'Global Projects Committee'
Subject: Re: OWASP Vicnum
Happy to help here
Tom Brennan
Board Member - OWASP Foundation
Url: www.owasp.org | Tel: 973-506-9303
http://www.linkedin.com/in/tombrennan
_____
From: "Paulo Coimbra"
Date: Thu, 27 Aug 2009 18:13:05 +0100
To: 'Tom Brennan'<tomb at owasp.org>
Subject: RE: OWASP Vicnum
Hello Tom,
I propose we assess the project release as soon as possible in accordance with our new Assessment Criteria 2.0 - <http://www.owasp.org/index.php/Assessment_Criteria_v2.0> http://www.owasp.org/index.php/Assessment_Criteria_v2.0.
If Mordecai agrees and targets his release at Stable quality, apart from Greg Pergament, we will need another reviewer <http://www.owasp.org/index.php/Assessing_Project_Releases> http://www.owasp.org/index.php/Assessing_Project_Releases.
As “It is recommended that an OWASP board member or Global Projects Committee member be the second reviewer on Stable releases”, may I ask you if you accept the role?
I have begun setting up the new Project Identification tab 2.0 but it has some issues to be solved still, e.g., the link to the assessment frame/Release details. As soon as we have it pieced together, I will finish it up.
Please let me know your thoughts, Tom and Mordecai.
Many thanks, regards,
Paulo Coimbra,
<https://www.owasp.org/index.php/Main_Page> OWASP Project Manager
From: Tom Brennan [mailto:tomb at owasp.org]
Sent: quinta-feira, 27 de Agosto de 2009 13:41
To: Paulo Coimbra
Cc: Kate Hartmann; Mordecai Kraushar
Subject: OWASP Vicnum
Paulo, the below project is being presented at the OWASP NYC event on
10/15 <http://www.owasp.org/index.php/NYNJMetro> http://www.owasp.org/index.php/NYNJMetro
(Alpha) OWASP Vicnum
<http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project> http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project
Prior to that event is there any milestone the project leader needs to update on his status of the project (Mo is cc:ed)
--
Tom Brennan
OWASP Foundation
Url: <http://www.owasp.org> www.owasp.org
Direct: 973-506-9303
<http://www.linkedin.com/in/tombrennan> http://www.linkedin.com/in/tombrennan
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/mailman/private/global-projects-committee/attachments/20100111/8a0b5f14/attachment-0001.html
More information about the Global-projects-committee
mailing list