[Owasp-guide] Owasp-guide Digest, Vol 30, Issue 1

Abe abek1 at comcast.net
Fri Dec 10 20:18:21 EST 2010


I apologize.

I thought that the content was not really addressing the issue related to
output encoding.  It seemed to just copy a chapter from the previous guide
verbatim.

This is a collaborative effort so if you feel like the content needs to be
updated, you are a co-author and have at it. 

I feel the writing spirit move me and when I get inspired, I sometimes get
carried away.

I put my email in there because I know that output encoding is a complicated
issue and I was sure that there would be questions on what I wrote. 

The doc is not set in stone so if you feel that was in appropriate, I or you
can remove it.

The important thing is that we get content for the new guide.


Regards,
Abe

-----Original Message-----
From: Theo Van Niekerk [mailto:theovn.list at gmail.com] 
Sent: Thursday, December 09, 2010 11:52 PM
To: Abe
Cc: owasp-guide at lists.owasp.org
Subject: Re: [Owasp-guide] Owasp-guide Digest, Vol 30, Issue 1

Hi Abe

I'm afraid that you have jumped the gun.

Vishal's schedule (see below your email) states to recycle old content -
which I believe is still very valid - by the end of Jan 2011.
Thereafter a collaborative approach will be followed to develop new content.
It will then be reviewed and updated.

Quite frankly I do not appreciate that you merrily jump in, remove the
recycled content originating form the old guide, and replace it with yours.
Also, what's with the "Good luck and email me (abraham.kang at owasp.org) with
any questions."? 

Regarding the content you have created, I see it as valuable but it would
have to be aligned with the ASVS. I think it is too complex for an
introduction and should rather reside in a subsection of the future
document.

Can you please rollback to the previous version?

Thanks
Theo



On 07 Dec 2010, at 20:02, Abe wrote:

> Hi Vishal,
> 
> Material from the previous version didn't really match so wrote a new
> chapter outright.
> 
> Output Encoding
> 
> Regards,
> Abe
> 
> -----Original Message-----
> From: owasp-guide-bounces at lists.owasp.org
> [mailto:owasp-guide-bounces at lists.owasp.org] On Behalf Of
> owasp-guide-request at lists.owasp.org
> Sent: Tuesday, December 07, 2010 9:00 AM
> To: owasp-guide at lists.owasp.org
> Subject: Owasp-guide Digest, Vol 30, Issue 1
> 
> Send Owasp-guide mailing list submissions to
> 	owasp-guide at lists.owasp.org
> 
> To subscribe or unsubscribe via the World Wide Web, visit
> 	https://lists.owasp.org/mailman/listinfo/owasp-guide
> or, via email, send a message with subject or body 'help' to
> 	owasp-guide-request at lists.owasp.org
> 
> You can reach the person managing the list at
> 	owasp-guide-owner at lists.owasp.org
> 
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of Owasp-guide digest..."
> 
> 
> Today's Topics:
> 
>   1. [OWASP-Guide] Schedule for dev guide (Vishal Garg)
> 
> 
> ----------------------------------------------------------------------
> 
> Message: 1
> Date: Mon, 6 Dec 2010 21:57:08 +0000
> From: Vishal Garg <vishalgrg at gmail.com>
> Subject: [Owasp-guide] [OWASP-Guide] Schedule for dev guide
> To: owasp-guide at lists.owasp.org
> Message-ID:
> 	<AANLkTi=wV71qetsDEFz=5nY6ZSUnBAzcOezLJTthHJzE at mail.gmail.com>
> Content-Type: text/plain; charset="iso-8859-1"
> 
> Hi All,
> 
> After having a discussion with Anurag, we have come up with the following
> schdule for the new dev guide. Could all section leads please provide an
> update on how much work has already been done for the first phase of
> recycling the content from the previous version of development guide and
how
> much of it is still pending, along with an outline of any new additions
they
> are planning to implement to their sections.
> 
> Please note that the new development guide also needs to meet ASVS
standard
> and new OWASP numbering scheme. Therefore you need to ensure that you
adhere
> to these guidelines and make adjustments to your sections accordingly. If
in
> doubt, just get in touch with wither me or Anurag.
> 
>  31/01/2011
> 
> Recycling the old content from previous guide.
> 
> 31/03/2010
> 
> New content development for all sections
> 
> 30/04/2011
> 
> Content review and updates.
> 
> 31/05/2011
> 
> Finishing touches to the guide (eg. initial sections and indexes etc.)
> 
> 01/06/2011
> 
> Beta release. Get comments from public and make changes.
> 
> 30/06/2011
> 
> Final release (or possibly tie it with some event to make it more
visible).
> 
> We are also planning to have more frequest status meetings, possibly on a
> weekly basis so that the progress on the development of guide can be
> monitored more closely and we can have an open forum for discussions with
> other team members. Anurag has suggested using Skype for weekly meetings.
I
> hope everyone would be comfortable with this. More details on this would
> follow shortly.
> 
> Thanks to everyone for thier contributions to the guide.
> 
> Regards
> Vishal
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL:
>
https://lists.owasp.org/pipermail/owasp-guide/attachments/20101206/cead64bc/
> attachment-0001.html 
> 
> ------------------------------
> 
> _______________________________________________
> Owasp-guide mailing list
> Owasp-guide at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-guide
> 
> 
> End of Owasp-guide Digest, Vol 30, Issue 1
> ******************************************
> 
> _______________________________________________
> Owasp-guide mailing list
> Owasp-guide at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-guide



More information about the Owasp-guide mailing list