[Owasp-board] FW: Motivation to attend OWASP meetings

Dave Wichers dave.wichers at owasp.org
Wed Jan 24 15:44:59 UTC 2007


I agree with the concern but what do you consider a direct and specific
benefit? If the organization joins OWASP (which is a direct $) benefit, and
then offers a discount to something like a conference or some training, does
that qualify? I kind of think it should, but I could be convinced otherwise.


-----Original Message-----
From: owasp-board-bounces at lists.owasp.org
[mailto:owasp-board-bounces at lists.owasp.org] On Behalf Of Jeff Williams
Sent: Wednesday, January 24, 2007 10:40 AM
To: OWASP Board
Subject: [Owasp-board] FW: Motivation to attend OWASP meetings


We're getting a number of requests from people to make special deals to
OWASP members.  While it seems like a 'no-harm' kind of thing, I'm a little
concerned about the long-term effect here.  It is really misusing OWASP for
a little cheap marketing.  I'm sure nobody here has a malicious intent, but
over the long term, it makes OWASP look a little shady.

My recommendation is that we never let anyone do this kind of advertising at
OWASP (outside the banner ad), unless there is a direct and specific benefit
to OWASP itself, and not just a corollary benefit to the members.


Jeff Williams, Chair
The OWASP Foundation
work: 410-707-1487
main: 301-604-4882
"Dedicated to finding and fighting the causes of insecure software"

-----Original Message-----
From: Nish Bhalla [mailto:nish at securitycompass.com] 
Sent: Wednesday, January 24, 2007 10:35 AM
To: 'Jeff Williams'
Cc: dinis at ddplus.net
Subject: Motivation to attend OWASP meetings

Hi Guys,

We in the Toronto OWASP chapter are having very very few people (non
organizers 2 may be 3) attend OWASP monthly meetings, so we were planning to
do a raffle to give out seats in Security Compass public class (Haven't
decided which one yet but possibly a one day source code review or hacking
basics class). 

We wanted to extend this to other chapters as well, we would like to do it
in an manner that is acceptable per OWASP and organized in such a manner
that there is not a whole lot of misuse of giving this seat out.

Please let me know what you guys think of this option and how you think we
should proceed with this.


Owasp-board mailing list
Owasp-board at lists.owasp.org

More information about the Owasp-board mailing list