[Owasp-dotnet] Possible OWASP - Tomoye and .NET Security Lib

[Mark Curphey]

Hi People

I know a few people were interested in building some portal code and looking
at DNN and others but realistically with peoples busy schedules and given
the current pressure of OWASP really suffering without a decent community
site we are looking at using www.tomoye.com (which is incidentally written
in .NET) in the near future. 

On another note a few people have written to me asking if we have any useful
security libraries written in .NET similar to the OWASP Common Library in
Java. My answer is always no, but it seemed to me this is a great
opportunity to build one. It will be easy for people to submit small
snippets of code that can be refactored. If you haven't contacted me within
two weeks with an offer of code we will clean this list out as it seems to
be full of lurkers (shame on you). OWASP has kinda faltered for the last
year, its time to kick it back into action.  

So if anyone wants to post useful security related code to this list that is
ideally  and license copyright free (must be able to be open sourced), I
will maintain a copy, refactor it and maintain a CVS tree. If not you can
read the archives ;-) 

You can look at http://www.spidynamics.com/collateral/SecureOBJ.pdf for
inspiration or better stillhttp://cvs.sourceforge.net/viewcvs.py/owasp/ocl/

Anyone want to offer to grapple with VS.Net and make an add-in ;-)

Mark