[Owasp-guide] Volunteering for Output Encoding Chapter

Abraham Kang abraham.kang at owasp.org
Thu May 17 03:02:17 UTC 2012


I think output encoding can apply to any executable context including
command line output, xml, shell script, sql.  If the chapter is to focused
on xss, I can modify it.

--Abe
On May 14, 2012 8:10 PM, "Jim Manico" <jim.manico at owasp.org> wrote:

>  Abe,
>
> Can we rename the output encoding section and call it "XSS Prevention"
> instead?
>
> Complete XSS prevention requires validation, HTML policy validation,
> proper JSON parsing and a host of other techniques other than just output
> encoding.
>
> Fair? Interested?
>
> Aloha,
> Jim
>
>
>  I want to volunteer to take the Output Encoding Chapter.  I added the
> chapter a while ago but it has been sitting idle.
>
> The content is pretty much done but may need minor reorganization.
>
> Regards,
> Abe
>
>
>
>
> _______________________________________________
> Owasp-guide mailing listOwasp-guide at lists.owasp.orghttps://lists.owasp.org/mailman/listinfo/owasp-guide
>
>
>
> --
> Jim Manico
>
> Connections Committee Chair
> Cheatsheet Series Product Manager
> OWASP Podcast Producer/Host
>
> jim at owasp.org
> www.owasp.org
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-guide/attachments/20120516/ec530332/attachment.html>


More information about the Owasp-guide mailing list