[Owasp-board] Argentina Chapter

Dave Wichers dave.wichers at owasp.org
Fri Nov 5 00:08:17 UTC 2010


Given that you understand the language Dinis, can you try to take care of
this?

 

Thanks, Dave

 

From: owasp-board-bounces at lists.owasp.org
[mailto:owasp-board-bounces at lists.owasp.org] On Behalf Of dinis cruz
Sent: Wednesday, November 03, 2010 9:56 AM
To: Seba
Cc: OWASP FoundationBoard List
Subject: Re: [Owasp-board] Argentina Chapter

 

Seba, it might not be clear due to the content being in spanish but what is
happening there is a blatant commercial advertisement of services and
training courses provided by a 3rd party company inside an OWASP page.

 

The example that Paulo mentions below is a case where the News sections of
the Argentina page (http://www.owasp.org/index.php/Argentina) is 'inviting'
the OWASP community to this course
http://www.bonsai-sec.com/es/education/web-security-buenos-aires.php (link
on page) which costs 1700 USD and has a 20% discount to OWASP members. To
make matters a bit worse the course is not about OWASP or one of its tools
(it is about Web App Sec)

 

There is also the logo and links to two commercial companies with offers of
discounts to OWASP members.

 

And Arturo (which has been a long time contributor for OWASP) has
historically shown reservations on how the chapter is run (and its
independence from commercial interests).

 

My problem here is not the discount offered to OWASP members but the fact
that there is no clear separation between an OWASP activity and a Commercial
activity. We also have to make sure that this offer is open to ALL local
companies and not just these two (which happen to be connected with the
Argentinian chapter leadership)

Dinis Cruz

On 3 November 2010 13:10, Seba <seba at owasp.org> wrote:

I will contact Martin.
But I don't see a big issue if owasp members are offered discounts to
publish this through chapter channels.

--Seba


On Mon, Nov 1, 2010 at 12:08 PM, Jeff Williams <jeff.williams at owasp.org>
wrote:
> Has the current chapter lead been contacted?  I think step one is a gentle
reminder about how chapters should be run.
>
> --Jeff
>
>
>
>
> On Oct 30, 2010, at 3:06 PM, "Paulo Coimbra" <paulo.coimbra at owasp.org>
wrote:
>
>> Board,
>>
>> For your information, please see the file enclosed and the thread below.
>>
>> Thanks,
>> - Paulo
>>
>>
>> Paulo Coimbra,
>> OWASP Project Manager
>>
>>
>>>> -----Original Message-----
>>>> From: Arturo 'Buanzo' Busleiman [mailto:buanzo at buanzo.com.ar]
>>>> Sent: sexta-feira, 29 de Outubro de 2010 20:33
>>>> To: Paulo Coimbra
>>>> Cc: dinis cruz
>>>> Subject: Re: Argentina Chapter
>>>>
>>>> Paulo,
>>>>
>>>> As I've always said, I fully support OWASP with my heart, not with my
>>>> pockets. I'm my current position as security advisor for the
>>>> argentinian national CERT, OWASP is always first in the list of
>>>> recommendations, even inside security reports, pentest results, etc.
>>>>
>>>> That's what I can offer to OWASP with my currently limited time: owasp
>>>> awareness in .gov.ar, and my name/presence whenever it is required, as
>>>> long as it is useful for owasp.
>>>>
>>>> I don't consider myself good at strategic advice, but I'd recommend to
>>>> search for / create other OWASP chapters in Argentina, to stop the
>>>> current "monopoly".
>>>>
>>>> On Fri, Oct 29, 2010 at 4:24 PM, Paulo Coimbra
>>>> <paulo.coimbra at owasp.org> wrote:
>>>>> Arturo,
>>>>>
>>>>>
>>>>>
>>>>> Thank you for responding so candidly and swiftly. Your input helps
>>>> me to
>>>>> have a deeper and more ordered vision of what is happening in OWASP
>>>>> Argentina.
>>>>>
>>>>>
>>>>>
>>>>> As you see, a Board Member is already being copied.  I will be
>>>> waiting for
>>>>> hierarchical directions and will keep you posted regarding
>>>> hypothetical
>>>>> further developments.
>>>>>
>>>>>
>>>>>
>>>>> Also, if you wished and had the cycles, I would be glad to hear your
>>>>> recommendation on the best course of action to deal with this
>>>> situation.
>>>>>
>>>>>
>>>>>
>>>>> Thanks,
>>>>>
>>>>> - Paulo
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> Paulo Coimbra,
>>>>>
>>>>> OWASP Project Manager
>>>>>
>>>>>
>>>>>
>>>>> From: Arturo 'Buanzo' Busleiman [mailto:buanzo at buanzo.com.ar]
>>>>> Sent: sexta-feira, 29 de Outubro de 2010 19:24
>>>>> To: Paulo Coimbra
>>>>> Cc: dinis cruz
>>>>> Subject: Re: Argentina Chapter
>>>>>
>>>>>
>>>>>
>>>>> Paulo, Dinis,
>>>>>
>>>>>
>>>>>
>>>>> On other occasions I've brought up the fact that I did not like how
>>>> the
>>>>> Argentinian chapter was being led.
>>>>>
>>>>>
>>>>>
>>>>> In particular, you probably know that Martin Tartarelli is/was a
>>>> developer
>>>>> of Andres Riancho's w3af project. Also, Andres is the CEO of Bonsai
>>>>> security.
>>>>>
>>>>>
>>>>>
>>>>> All OWASP Argentina events, so far, have had or the University of
>>>> Buenos
>>>>> Aires engineering department and/or Bonsai related to them.
>>>>>
>>>>>
>>>>>
>>>>> I'm not sure if that's your concern, but if that is so, then I share
>>>> them.
>>>>>
>>>>>
>>>>>
>>>>> On Fri, Oct 29, 2010 at 3:04 PM, Paulo Coimbra
>>>> <paulo.coimbra at owasp.org>
>>>>> wrote:
>>>>>
>>>>>> Dear Arturo,
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>> Please see the enclosed file and look at the red signalled part on
>>>> the
>>>>>
>>>>>> image's bottom.
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>> I've talked with Dinis Cruz, copied above, about this issue and we
>>>>>
>>>>>> agreed on consulting you before any other considerations.
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>> Please let us know your thoughts.
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>> Enjoy the weekend and take care.
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>> Thanks,
>>>>>
>>>>>>
>>>>>
>>>>>> - Paulo
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>> Paulo Coimbra,
>>>>>
>>>>>>
>>>>>
>>>>>> OWASP Project Manager
>>>>>
>>>>>>
>>>>>
>>>>>>
>> <Argentina Chapter.JPG>
>> _______________________________________________
>> Owasp-board mailing list
>> Owasp-board at lists.owasp.org
>> https://lists.owasp.org/mailman/listinfo/owasp-board
> _______________________________________________
> Owasp-board mailing list
> Owasp-board at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-board
>
_______________________________________________
Owasp-board mailing list
Owasp-board at lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-board

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20101104/eedf02af/attachment-0002.html>


More information about the Owasp-board mailing list