<div dir="ltr"><div>I wasn't involved in it, but I think that the idea was to help a company looking for AppSec training to find a reputable vendor.  Ultimately I agree with both of you.  OWASP shouldn't be trying to arrange training vendors for companies like this.  It would be one thing if it were a public training and this were a public CFT for that.  It's a whole different thing to be hiring a trainer for a private training.<br><br></div>~josh<br></div><div class="gmail_extra"><br><div class="gmail_quote">On Wed, May 6, 2015 at 5:57 PM, Jim Manico <span dir="ltr"><<a href="mailto:jim.manico@owasp.org" target="_blank">jim.manico@owasp.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="auto"><div>I agree 1000% Jason; but I'm a trainer and am biased. </div><div><br></div><div>I'll tell you this: the board did not authorize this email and we are discussing it with staff in a hopefully respectful matter.<br><br>More on this soon.</div><div><br></div><div>Aloha,<br><div>--</div><div>Jim Manico</div><div>@Manicode</div><div><a href="tel:%28808%29%20652-3805" value="+18086523805" target="_blank">(808) 652-3805</a></div></div><div><div class="h5"><div><br>On May 6, 2015, at 2:49 PM, Jason Li <<a href="mailto:jason.li@owasp.org" target="_blank">jason.li@owasp.org</a>> wrote:<br><br></div><blockquote type="cite"><div>
    <div><div>So was this a legitimate email?</div><div><br></div><div>Per Martin's message, I'm a little surprised to see it given OWASP's general stance on vendor neutrality.</div><div><br></div><div>If the training will be publicly available via OWASP channels and revenue is split with the organization, it would seem reasonable by an outsider to infer endorsement of the trainer by OWASP.</div><div><br></div><div>Per Michael's note, some additional details and insights might help frame the request...</div><div><br></div><div>-Jason</div><div><div><br></div><br></div></div>
    <div class="gmail_quote">_____________________________<br>From: Michael Coates <<a href="mailto:michael.coates@owasp.org" target="_blank">michael.coates@owasp.org</a>><br>Sent: Wednesday, May 6, 2015 3:02 AM<br>Subject: Re: [Owasp-board] Fwd: OWASP Foundation - PCI Training - Call for trainers<br>To: Seba <<a href="mailto:seba@owasp.org" target="_blank">seba@owasp.org</a>><br>Cc: OWASP Foundation Board List <<a href="mailto:owasp-board@lists.owasp.org" target="_blank">owasp-board@lists.owasp.org</a>><br><br><br>       <div>   I received this email on 3 or 4 lists. I can only assume we sent it to all mailing lists.    <br>   <br>   <br>  </div>  <div>   <br>On May 5, 2015, at 11:26 PM, Seba <   <a href="mailto:seba@owasp.org" target="_blank">seba@owasp.org</a>> wrote:   <br>   <br>  </div>  <blockquote>   <div>    <div dir="ltr">     in the footer it states     <div>      "You received this message because you are subscribed to the Google Groups "OWASP Summit 2013" group." ??     </div>     <div>      regards     </div>     <div>      Seba      <br>      <br>      <div class="gmail_quote">       On Wed, May 6, 2015 at 8:21 AM Michael Coates <       <a href="mailto:michael.coates@owasp.org" target="_blank">michael.coates@owasp.org</a>> wrote:       <br>       <blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">        <div dir="auto">         <div>          Did we send this out to the all of our mailing lists?         </div>         <div>          <br>         </div>         <div>          It seems very ad hoc and without the right info for a mass email.          </div>         <div>          <br>         </div>         <div>          Why would we want to send a trainer rfp to 10,000s of people for a 125 person event?         </div>         <div>          <br>          <br>         </div>         <div>          <br>Begin forwarded message:          <br>          <br>         </div>         <blockquote>          <div>           <b>From:</b> "The OWASP Foundation" <           <a href="mailto:The_OWASP_Foundation@mail.vresp.com" target="_blank">The_OWASP_Foundation@mail.vresp.com</a>>           <br>           <b>Date:</b> May 5, 2015 at 7:39:12 PM PDT           <br>           <b>To:</b>            <a href="mailto:owasp-summit-2013@owasp.org" target="_blank">owasp-summit-2013@owasp.org</a>           <br>           <b>Subject:</b>            <b>OWASP Foundation - PCI Training - Call for trainers</b>           <br>           <b>Reply-To:</b>            <a href="mailto:owasp-summit-2013@owasp.org" target="_blank">owasp-summit-2013@owasp.org</a>           <br>           <br>          </div>         </blockquote>         <blockquote>          <div>            <div style="clear:both;font-size:10pt;color:black;font-weight:normal;line-height:normal;font-family:Verdana,Arial,Helvetica,sans-serif;border-style:none;border-color:black;border-width:0;margin:0 0 10px 0;padding:0;width:100%;background-color:transparent">             <table align="center" bgcolor="#FFFFFF" border="0" cellpadding="0" cellspacing="0" width="650">              <tbody>              <tr>                <td width="10"> </td>                <td bgcolor="#8ca6c6" width="40"> <img src="http://img-ak.verticalresponse.com/email_layout/2166//spacer.gif" alt="spacer.gif" height="1" width="40"> </td>                <td style="padding:5px 15px" width="600">                 <div style="clear:both;border-style:none;border-color:black;border-width:0;font-size:24px;color:#000000;font-weight:normal;line-height:normal;font-family:Verdana,Arial,Helvetica,sans-serif;margin:0 0 10px 0;padding:0;width:100%;background-color:transparent">                  <img src="http://img-ak.verticalresponse.com/media/d/8/6/d866284ccf/a5e036ccf0/fc2bf0ec70/library/owasp_logo%20copy%204.jpg" alt="owasp_logo copy 4" title="owasp_logo copy 4" style="width:200px;min-height:71px" align="none" height="71" border="0" width="200">                </div> </td>               </tr>               <tr>                <td bgcolor="#999999"> <img src="http://img-ak.verticalresponse.com/email_layout/2166//spacer.gif" alt="spacer.gif" height="40" width="10"> </td>                <td bgcolor="#8ca6c6"> <img src="http://img-ak.verticalresponse.com/email_layout/2166//spacer.gif" alt="spacer.gif" height="40" width="40"> </td>                <td bgcolor="#999999" width="600"> <img src="http://img-ak.verticalresponse.com/email_layout/2166//spacer.gif" alt="spacer.gif" height="40" width="5"> </td>               </tr>               <tr>                <td> </td>                <td bgcolor="#8ca6c6"> </td>                <td valign="top" width="600">                 <table border="0" cellpadding="0" cellspacing="0" width="100%">                  <tbody>                  <tr>                    <td style="padding:20px">                     <div style="clear:both;border-style:none;border-color:black;border-width:0;font-size:10pt;color:black;font-weight:normal;line-height:normal;font-family:Verdana,Arial,Helvetica,sans-serif;margin:0 0 10px 0;padding:0;width:100%;background-color:transparent">                      <br>                     <font face="Verdana, Geneva, sans-serif" size="3">OWASP has been asked by an organization to provide PCI training to their team of 125 developers and a high level training to their 1000+ end users, or "card handlers"</font>                     <div>                      <font face="Verdana, Geneva, sans-serif" size="3"><br></font>                     </div>                     <div>                      <font face="Verdana, Geneva, sans-serif" size="3">Below are the general guidelines for the training program</font>                     </div>                    </div>                     <div style="clear:both;border-style:none;border-color:black;border-width:0;font-size:10pt;color:black;font-weight:normal;line-height:normal;font-family:Verdana,Arial,Helvetica,sans-serif;margin:0 0 10px 0;padding:0;width:100%;background-color:transparent">                      <span><span style="font-size:15px;font-family:Arial;vertical-align:baseline;white-space:pre-wrap;background-color:transparent"><img src="https://lh6.googleusercontent.com/L0JouFxlY9-3CwH880JyqqzhJpOAg6JEP6jc_sJsaG-sq_pRMTISAJfEClFoPrpHNaWnWpmxQx1Fa8PfkPMy9J7F2XpdEjvSHqgdB74DurrnVI1NEOFGlaPFgsG-Z5soMLB6Tgk" style="width:720px;min-height:368px" alt="image002.png" height="368" width="720"></span></span>                    </div>                     <div style="clear:both;border-style:none;border-color:black;border-width:0;font-size:10pt;color:black;font-weight:normal;line-height:normal;font-family:Verdana,Arial,Helvetica,sans-serif;margin:0 0 10px 0;padding:0;width:100%;background-color:transparent">                      <span><p dir="ltr" style="line-height:1.38;margin:0px;padding:0px"><span style="vertical-align:baseline;white-space:pre-wrap;background-color:transparent"><font face="Verdana, Geneva, sans-serif" size="3">The developer training will be held as 5, 4 hour, virtual classes with 25 students in each class.</font></span></p><font face="Verdana, Geneva, sans-serif" size="3"><br></font><p dir="ltr" style="line-height:1.38;margin:0px;padding:0px"><span style="vertical-align:baseline;white-space:pre-wrap;background-color:transparent"><font face="Verdana, Geneva, sans-serif" size="3">The card handler training will be completed through a 1 hour recorded webinar.</font></span></p><font face="Verdana, Geneva, sans-serif" size="3"><br></font><p dir="ltr" style="line-height:1.38;margin:0px;padding:0px"><span style="vertical-align:baseline;white-space:pre-wrap;background-color:transparent"><font face="Verdana, Geneva, sans-serif" size="3">The recorded webinar will be posted on the OWASP YouTube Channel and be publicly available.</font></span></p><font face="Verdana, Geneva, sans-serif" size="3"><br></font><p dir="ltr" style="line-height:1.38;margin:0px;padding:0px"><span style="vertical-align:baseline;white-space:pre-wrap;background-color:transparent"><font face="Verdana, Geneva, sans-serif" size="3">This is a paid training opportunity.  The standard 40/60 revenue split with the trainer will be in effect.  </font></span></p><p dir="ltr" style="line-height:1.38;margin:0px;padding:0px"><span style="vertical-align:baseline;white-space:pre-wrap;background-color:transparent"><font face="Verdana, Geneva, sans-serif" size="3"><br></font></span></p><p dir="ltr" style="line-height:1.38;margin:0px;padding:0px"><span style="vertical-align:baseline;white-space:pre-wrap;background-color:transparent"><font face="Verdana, Geneva, sans-serif" size="3">Please submit your course outline and abstract here: </font></span></p>                      <div>                       <span style="vertical-align:baseline;white-space:pre-wrap;background-color:transparent"><span style="text-decoration:underline;color:rgb(17,85,204);font-weight:bold;vertical-align:baseline"><font face="Verdana, Geneva, sans-serif" size="3"><a href="http://cts.vresp.com/c/?TheOWASPFoundation/a5e036ccf0/4f163f6020/b5b0d0cef7/conf=pci20150" style="text-decoration:none" target="_blank">https://easychair.org/conferences/?conf=pci20150</a></font></span></span>                      </div>                      <div>                       <span style="vertical-align:baseline;white-space:pre-wrap;background-color:transparent"><span style="text-decoration:underline;color:rgb(17,85,204);font-weight:bold;vertical-align:baseline"><br></span></span>                      </div>                      <div>                       <span style="white-space:pre-wrap"><font face="Verdana, Geneva, sans-serif" size="3">Submission Deadline is May 15, 2015</font></span>                      </div></span>                    </div>                     <div style="clear:both;border-style:none;border-color:black;border-width:0;font-size:10pt;color:black;font-weight:normal;line-height:normal;font-family:Verdana,Arial,Helvetica,sans-serif;margin:0 0 10px 0;padding:0;width:100%;background-color:transparent">                      <span><span style="vertical-align:baseline;white-space:pre-wrap"><font face="Verdana, Geneva, sans-serif" size="3">In addition to the CFT, we would also like to engage the community to be on the team to review the proposals.  Members of the review team can not have submitted proposals. If you are able to participate, please <a href="http://cts.vresp.com/c/?TheOWASPFoundation/a5e036ccf0/4f163f6020/1b41e0f00a" target="_blank">Contact Us</a></font></span></span>                    </div> </td>                   </tr>                  </tbody>                </table> </td>               </tr>              </tbody>            </table>            </div>            <br>            <br style="clear:both">            <hr>            <table border="0" cellpadding="5" cellspacing="0" width="100%">             <tbody>             <tr>               <td> <font face="arial,verdana" size="1"> If you no longer wish to receive these emails, please reply to this message with "Unsubscribe" in the subject line or simply click on the following link: <a href="http://cts.vresp.com/u?a5e036ccf0/4f163f6020/mlpftw" target="_blank">Unsubscribe</a> </font> </td>              </tr>             </tbody>           </table>            <hr>            <table border="0" cellpadding="5" cellspacing="0" width="100%">             <tbody>             <tr>               <td> <font face="arial,verdana" size="1"> The OWASP Foundation<br> <a>1200-C Agora Drive</a><br> <a>#232</a><br> <a>Bel Air, Maryland 21014</a><br> US<br> <p> <a href="http://www.verticalresponse.com/content/pm_policy.html" target="_blank">Read</a> the VerticalResponse marketing policy. </p> </font> </td>               <td align="right"> <a href="http://www.verticalresponse.com/landing/ef/?np/a5e036ccf0&utm_campaign=footer&utm_medium=referral&utm_source=footer" target="_blank"> <img src="http://img-ak.verticalresponse.com/np_pwrby_vr_logo_126.gif" alt="Non-Profits Email Free with VerticalResponse!" border="0"> </a> </td>              </tr>             </tbody>           </table>            <img alt="" src="http://cts.vresp.com/o.gif?a5e036ccf0/4f163f6020/mlpftw">            <p></p> --            <br> You received this message because you are subscribed to the Google Groups "OWASP Summit 2013" group.           <br> To unsubscribe from this group and stop receiving emails from it, send an email to            <a href="mailto:owasp-summit-2013+unsubscribe@owasp.org" target="_blank">owasp-summit-2013+unsubscribe@owasp.org</a>.           <br> To post to this group, send email to            <a href="mailto:owasp-summit-2013@owasp.org" target="_blank">owasp-summit-2013@owasp.org</a>.           <br> Visit this group at            <a href="http://groups.google.com/a/owasp.org/group/owasp-summit-2013/" target="_blank">http://groups.google.com/a/owasp.org/group/owasp-summit-2013/</a>.           <br> For more options, visit            <a href="https://groups.google.com/a/owasp.org/d/optout" target="_blank">https://groups.google.com/a/owasp.org/d/optout</a>.           <br>           </div>         </blockquote>        </div>_______________________________________________        <br> Owasp-board mailing list        <br>         <a href="mailto:Owasp-board@lists.owasp.org" target="_blank">Owasp-board@lists.owasp.org</a>        <br>         <a href="https://lists.owasp.org/mailman/listinfo/owasp-board" target="_blank">https://lists.owasp.org/mailman/listinfo/owasp-board</a>        <br>        </blockquote>      </div>     </div>    </div>    </div>  </blockquote> <br><br></div>
 </div></blockquote><blockquote type="cite"><div><span>_______________________________________________</span><br><span>Owasp-board mailing list</span><br><span><a href="mailto:Owasp-board@lists.owasp.org" target="_blank">Owasp-board@lists.owasp.org</a></span><br><span><a href="https://lists.owasp.org/mailman/listinfo/owasp-board" target="_blank">https://lists.owasp.org/mailman/listinfo/owasp-board</a></span><br></div></blockquote></div></div></div>
<br>_______________________________________________<br>
Owasp-board mailing list<br>
<a href="mailto:Owasp-board@lists.owasp.org">Owasp-board@lists.owasp.org</a><br>
<a href="https://lists.owasp.org/mailman/listinfo/owasp-board" target="_blank">https://lists.owasp.org/mailman/listinfo/owasp-board</a><br>
<br></blockquote></div><br></div>