[Owasp-board] (VOTE REQUEST) Re: Proposed OWASP Week Packs

Dave Wichers dave.wichers at owasp.org
Tue Mar 11 17:39:10 UTC 2008


For this particular thing, I think doing something is good, so lets go with
Dinis' suggestion for now. In the future, I would prefer to allow the
chapters to order what they want, and we get out of their hair, but that's a
separate issue.

 

So, for this, I vote YES too.

 

From: owasp-board-bounces at lists.owasp.org
[mailto:owasp-board-bounces at lists.owasp.org] On Behalf Of dinis cruz
Sent: Tuesday, March 11, 2008 1:10 PM
To: Sebastien Deleersnyder
Cc: OWASP Board
Subject: [Owasp-board] (VOTE REQUEST) Re: Proposed OWASP Week Packs

 

What do you mean by ALL chapters?

All that participate on the OWASP week? or all in OWASP?

The 'OWASP pack' is one of the motivations that we have to get chapters to
participate, and there is plenty of dead chapters.

So here is my (slightly) revised proposal for approval:

 "Send ALL chapter participanting on the OWASP week and the most active
chapters (who can't participate (for example NYNJ, Israel, Belgium)) the 300
to 450 USD pack (including  transport). 
OWASP central (i.e. Alison will order, assemble and distribute 15 packs"

So fellow OWASP board members, what is your vote?

Mine is YES 

:)

Dinis

On Tue, Mar 11, 2008 at 4:07 PM, Sebastien Deleersnyder
<Sebastien.Deleersnyder at telindus.be> wrote:

Dinis,

 

as always : you are right in pushing this :-)

There is indeed a certain form of inertia that has to be broken to have more
active chapters.

 

What about this: Let's send (all?) the chapters a minimal package and
provide the active chapters with certificates ?

 

regards

 

Seba

 

From: dinis cruz [mailto:dinis.cruz at owasp.org] 
Sent: 11 March 2008 11:26


To: Sebastien Deleersnyder
Cc: Alison McNamee; Tom Brennan; OWASP Board
Subject: Re: [Owasp-board] Proposed OWASP Week Packs

 

Sebastien, remember that 'having a choice on the books to order' is exactly
the 'OWASP points model' so that is what they will have in the future (heck
they could already have that TODAY, if they asked for it :)  )

The problem here, is on the difference between 'something is possible' and
'something happens'

What I found (by experience) is that our responsibility as OWASP central is
to:

  - show WHAT is possible  =  ('OWASP books exist')
  - show HOW it can happen    = ('You can receive OWASP books and give it to
your chapter meetings participants!')
  - pro-actively execute it so that people believe in the first two items
above (the WHAT and HOW)  =  ('Here is a pile of book, distribute it, and
once your finished with it, let's talk about the next batch')

Remember that 'ordering' (or receiving) this goodies pack is just one step
(of many) that the local chapter's leader(s) need to solve (from storage, to
transportation ,to fair distribution to meeting participants, to collection
of next batch of orders, etc....)

The bottom line is that what we (OWASP board) need to do, is to kick-start
the process and get the momentum going.

Because if we don't do that, nothing happens!!!

We have countless cases of 'things' that COULD happen but never do without
central intervention and push. For example: OWASP books distribution, OotM
travels, Chapter's collaborating with each other, member packs, etc...

Another important point is to clearly distinguish between mature
'activities' (like OWASP conferences) , semi mature activities (OWASP
projects, Seasons of Code) and very immature activities (OotM, OWASP week,
OWASP books, etc...)

The rules and focus must be different depending on the maturity level. So
for the 'immature' ones we should be focusing on what we need to do to
kickstart it, and not the problems that might occur if somebody abused that
'immature' initiative (our track record shows that the level of abuse of
OWASP immature initiatives is very low). 

Our (OWASP) problem today (in my point of view) is not abuse from our
community, is LACK of participation from that community (which is why we are
sitting on 200k USD in the bank)

So back to the books and chapters, the bottom line is that IF we don't send
these packs to the chapters that participate, NOTHING will happen for a
while. 

And look at how disappointing the chapter uptake on the OWASP week is? We
have 100+ chapters but we will lucky if 10 or 15 participate!

Finally, part of my strategy of having the 'chapter goodies packs (with
books & other bit)' is to show the chapters that IT is possible for OWASP
central to send them these materials, and hopefully kickstart the discussion
of local chapter 'OWASP points' and finances.

So, I say, lets create these packs (hopefully still on time for the OWASP
week) and try to get as many participating chapters as possible.

Dinis





On Tue, Mar 11, 2008 at 9:49 AM, Sebastien Deleersnyder
<Sebastien.Deleersnyder at telindus.be> wrote:

As chapter leader, I prefer to have a certificate and select the books
ourselves.

I would do this based on a local poll. This also points people to the
availability .

time&logistics-wise I think giving the chapter leaders a choice will result
in not being able to send the packs by start of April.

 

regards

 

Seba

 

From: dinis cruz [mailto:dinis.cruz at owasp.org] 
Sent: 10 March 2008 15:51
To: Sebastien Deleersnyder
Cc: Alison McNamee; Tom Brennan; OWASP Board


Subject: Re: [Owasp-board] Proposed OWASP Week Packs

 

What about giving the chapter an option? Certificate or Packs?

One thing to take into consideration is the timings of the print materials.
The only way to get good prices in relatively quick timescales is to make
big orders

On Tom's points I agree with some and disagree with others (will send
comments shortly)

Dinis

On Mon, Mar 10, 2008 at 2:31 PM, Sebastien Deleersnyder
<Sebastien.Deleersnyder at telindus.be> wrote:

certificate is easier on logistics and allows the chapter leader to
select the books, based on the local requirements.
ok for me

Seba

-----Original Message-----
From: owasp-board-bounces at lists.owasp.org
[mailto:owasp-board-bounces at lists.owasp.org] On Behalf Of Alison McNamee
Sent: 10 March 2008 15:28
To: 'Tom Brennan'
Cc: 'OWASP Board'
Subject: Re: [Owasp-board] Proposed OWASP Week Packs

What does everyone think about Tom's idea of giving each chapter a
certificate to spend at lulu?  If everyone agrees on this, I will have
to
check with lulu to see how we could do this.  I would like to get
everyone
else's input as soon as possible, as we only have 3 weeks to go!

Alison McNamee
OWASP Operations Director
9175 Guilford Road
Suite 300
Columbia, MD 21046
301-575-0197 (phone)
301-604-8033 (fax)






-----Original Message-----
From: Tom Brennan [mailto:tomb at owasp.org]
Sent: Saturday, March 08, 2008 3:44 PM
To: Alison McNamee
Cc: OWASP Board
Subject: Re: [Owasp-board] Proposed OWASP Week Packs

how about give each chapter a certificate for $xxxxx  and they can
spend it via lulu.com on what ever book(s) they want to hand out  -
they can order from lulu with a free book coupon or something...

we can still send the other swag ~ shirts/hats/pens etc... as this is
good for the mother ship to give to the local chapters for promo etc..
doing it this way would allow us to better identify chapters, chapter
leaders and it would save effort, time and provide a "gift" to the
chapter leaders from the mother ship as step #1.


On Fri, Mar 7, 2008 at 1:01 PM, Alison McNamee
<alison.mcnamee at owasp.org>
wrote:
>
>
>
>
> Hello everyone,
>
>
>
> The following is the proposed items to send to each chapter
participating
in
> OWASP Week:
>
>
>
> Books - 39 Total:
>
> 2 x Clasp     ($14.04)
> 10 x Top10, Test, Legal   ($10.25),
> 10 x OWASP Top 10 ($5.81 *price from website)
> 2 x Webgoat/Webscarab   (5.67),
> 5 x Code Review    (5.98),
> 5 x Top 10 Ruby    (4.94),
> 5 x OWASP Guide 05   (9.22)
> 8 x T-Shirts
> 15 x pens
> 1 DVD
> 1 Letter
>
> If everyone agrees on this, the total cost per pack would be $300.62.
This
> only includes the cost of the books.  We have enough leftover shirts
and
> pens from previous conferences that we can use, and the letter and DVD
> should not cost anything (we have blank DVDs as well).  So the only
> additional cost will be the shipping, which Dinis estimated at
$150/pack.
> This would make the total cost $450.62 per pack.  The only other cost
I
can
> foresee is possibly the cost of boxes..as the standard FedEx boxes
will
not
> be big enough for all of these books (I will probably have to buy a
couple
> of the largest boxes for each chapter).  We are estimating we will
send
> these to 15 chapters, making the total cost $6759.30.
>
> Please let me know if everyone is ok with this ASAP.  I will need to
order
> all of these books and have them shipped to me, then put together all
of
> these packets and have them shipped to each chapter in the next 4
weeks..so
> we need to get this process started very soon!
>
> Thank you,
>
>
>
>
>
> Alison McNamee
>
> OWASP Operations Director
>
> 9175 Guilford Road
>
> Suite 300
>
> Columbia, MD 21046
>
> 301-575-0197 (phone)
>
> 301-604-8033 (fax)
>
>
>
>
>
>
>
>
>
>
> _______________________________________________
>  Owasp-board mailing list
>  Owasp-board at lists.owasp.org
>  https://lists.owasp.org/mailman/listinfo/owasp-board
>
>



--
Tom Brennan
Board Member
OWASP Foundation
http://www.linkedin.com/in/tombrennan
Tel: 973-202-0122
Url: www.owasp.org

Its coming.... are you ready?
https://www.owasp.org/index.php/OWASP_NYC_AppSec_2008_Conference

_______________________________________________
Owasp-board mailing list
Owasp-board at lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-board
_______________________________________________
Owasp-board mailing list
Owasp-board at lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-board

 

 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20080311/7d7b6be4/attachment-0002.html>


More information about the Owasp-board mailing list