[Owasp-codereview] Cobol code review

Eoin eoin.keary at owasp.org
Mon Mar 9 12:18:53 EDT 2009

Great Idea.
There is call for such knowledge as I have been asked for this before.


2009/3/8 Jeff Williams <jeff.williams at owasp.org>

>  I think it’s a great idea.  There is an absolute ton of COBOL out there
> that quite literally drives the economy.  We ought to have some guidelines
> for checking whether it’s secure or not.  Go for it!!
> --Jeff
> *From:* owasp-codereview-bounces at lists.owasp.org [mailto:
> owasp-codereview-bounces at lists.owasp.org] *On Behalf Of *domenico di leo
> *Sent:* Saturday, March 07, 2009 6:05 PM
> *To:* owasp-codereview at lists.owasp.org
> *Subject:* [Owasp-codereview] Cobol code review
> I'd like to add a stub about a code review for the COBOL language .
> Before doing it, I want to know if it's worth writing a code review for the
> language. Indeed, it's an old language, out of usage for the current
> application and
> it may seem to be out of blue talking about this language.
> Nevertheless, we were asked to do a code review for the COBOL language: our
> client
> has developed thousands of line of code in COBOL, it still owns some old
> fashion
> applications and it has no intention to switch to a newer technology.
> Maybe other people deal with the COBOL language and are interested in
> mitigate potentially vulnerabilities
> due to bad programming. For this reason we were wondering if it's
> noteworthy to share
> our experience with the OWASP community members.
> Any suggest is appreciate
> _______________________________________________
> Owasp-codereview mailing list
> Owasp-codereview at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-codereview


OWASP Code Review Guide Lead Author
OWASP Ireland Chapter Lead
OWASP Global Committee Member (Industry)

Quis custodiet ipsos custodes
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-codereview/attachments/20090309/5935863c/attachment.html 

More information about the Owasp-codereview mailing list