[Owasp-classic-asp-security-project] I could not finish

Juan C Calderon johnccr at yahoo.com
Mon Mar 16 04:02:59 EDT 2009 

Hello List/Paulo

Due to a sticky and annoying error related to .NET/COM interoperability and IIS I slipped and was not able to finish as planned. However the progress so far is very good

Here is the current status (notice I am also attaching the source code and  Classic ASP page implementing most of the classess in ESAPI).

AccessController - 100%
AcessReferenceMap - 0% (Not working)
Authenticator - 50% (some parameters are very .NET specific and are hard to marshall)
Encoder - 100%
EncryptedProperties - 100%
Encryptor - 100%
Executor - 50% (some parameters are very .NET specific and are hard to marshall)
HttpUtilities - 30% (This class is specially difficult due to its tight integration with .NET specific HTTPRequest objects)
IntrusionDetector - 100%
Logger - 50% (Some functions missing due to integration with native .NET objects)
Randomizer - 100%
SafeFile - 0%
SecurityConfiguration - 100%
Validator 65%

AccessReferenceMap, Executor and SafeFile are small components and I think I can have them running by tomorrow night. But we will still miss parts of Authenticator, HTTPUtilities and Validator.

Anyway, it was great advance since Portugal as there 3 classes were working partially and the others wer not working at all. Now All are working but 3 will be working partially :)

PS. I am also copying Jeff as I think he might be interested in the advance of the project.

Regards,
Juan Carlos



      
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Default.asp
Type: application/octet-stream
Size: 11371 bytes
Desc: not available
Url : https://lists.owasp.org/pipermail/owasp-classic-asp-security-project/attachments/20090316/1d5306f2/attachment-0001.obj 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Owasp.Esapi.zip
Type: application/x-zip-compressed
Size: 1187384 bytes
Desc: not available
Url : https://lists.owasp.org/pipermail/owasp-classic-asp-security-project/attachments/20090316/1d5306f2/attachment-0001.bin

More information about the Owasp-classic-asp-security-project mailing list