[Owasp-leaders] (who is looking after OWASP at Linked-in) Fwd: From Didier CRUETTE and other Open Web Application Security Project (OWASP) group members on LinkedIn

Michael Menefee mmenefee at gmail.com
Thu Sep 17 19:16:38 EDT 2009


This is a good question and one that may ask the question: "does the
linkedin group require OWASP membership validation?" it seems to me that
most of the comments, articles and discussions on this group are geared
towards people who are not our typical OWASP members, but rather people
potentially interested in webappsec. I cant remember the validation process
for membership on this group, but Tom or Kate should be able to weigh in on
this topic....not that this is bad, if a linkedin group is the most
convenient way for some people to get webappsec news and info, I say "no
harm, no foul", this seems to support the overall goal of OWASP, which is to
promote web application security awareness...just my 2 cents.


On Thu, Sep 17, 2009 at 7:04 PM, dinis cruz <dinis.cruz at owasp.org> wrote:

> On the subject of vendor abuse , is anybody looking after the owasp group
> (& discussions in it) at LinkedIn?
> Some of the posts (like the ones in the update-email below and in here
> http://www.linkedin.com/groupAnswers?viewQuestions=&gid=36874&forumID=3&sik=1253228167186)
> are crossing the lines :)
> And before people start hitting hard the current posts, the first question
> to answer is *'are there any guidelines for how this LinkedIn group should
> be used and managed?'*
> *
> *
> *Dinis
> *
> ---------- Forwarded message ----------
> From: Open Web Application Security Project (OWASP) Group Members <
> group-digests at linkedin.com>
> Date: 2009/9/17
> Subject: From Didier CRUETTE and other Open Web Application Security
> Project (OWASP) group members on LinkedIn
> To: Dinis Cruz <dinis.cruz at owasp.net>
>  Linkedin GroupsSeptember 17, 2009 Open Web Application Security Project
> *Activity:* 2 discussions<http://www.linkedin.com/e/vgq/36874/EML_anet_ques_hm-dnhOon0JumNFomgJt7dBpSBA/>
> | 1 news discussion<http://www.linkedin.com/e/vgb/36874/EML_anet_disc_hm-dnhOon0JumNFomgJt7dBpSBA/>
> | 4 news articles<http://www.linkedin.com/e/vgn/36874/EML_anet_nws_hm-dnhOon0JumNFomgJt7dBpSBA/>
>   Discussions (2)  *Looking for static source code analysis for
> reliability/sturdiness and software security flaws detection ? Insite or
> Saas delivery ? Have a glance at http://www.qualitesys.com/*<http://www.linkedin.com/e/ava/7270708/36874/EML_anet_qa_ttle-dnhOon0JumNFomgJt7dBpSBA/> 0
> comments »<http://www.linkedin.com/e/ava/7270708/36874/EML_anet_qa_cmnt-dnhOon0JumNFomgJt7dBpSBA/>
> Started by Didier CRUETTE, QualitéSys
>   *Offering Static Code Analysis Services. Free Estimates. Contact
> www.parsonsisconsulting.com*<http://www.linkedin.com/e/ava/7253799/36874/EML_anet_qa_ttle-dnhOon0JumNFomgJt7dBpSBA/> 0
> comments »<http://www.linkedin.com/e/ava/7253799/36874/EML_anet_qa_cmnt-dnhOon0JumNFomgJt7dBpSBA/>
> Started by Matt Parsons, CISSP, www.parsonsisconsulting.com
>  News Discussions (1)  *Quantum Chip Helps Crack Code*<http://www.linkedin.com/e/avn/68937009/36874/EML_anet_nws_c_ttle-dnhOon0JumNFomgJt7dBpSBA/> 1
> comment »<http://www.linkedin.com/e/avn/68937009/36874/EML_anet_nws_c_cmnt-dnhOon0JumNFomgJt7dBpSBA/>
> I tried to explain this to my high school teacher back in 1980 when it
> didn't have a name. I called it Trinary. All I got was funny looks. ON, OFF,
> and maybe. Also, Moore's law will continue to chug along when systems use
> photons instead of electrons. Instead of ON/OFF, it will be Light/No Light
> and what wave length is it responding to. It should boost speed tremendously
> with few metal conductors and also use less power in the process due to the
> lack of resistance.
> By Victor Bonato
>  Latest News  *When Web 2.0 Becomes Security Risk 2.0 ?<http://www.linkedin.com/e/avn/69387091/36874/EML_anet_nws_title-dnhOon0JumNFomgJt7dBpSBA/>
> * 0 comments »<http://www.linkedin.com/e/avn/69387091/36874/EML_anet_nws_cmnt-dnhOon0JumNFomgJt7dBpSBA/>
> KASPERSKY LAB | September 17, 2009
> Cyber-criminals are targeting web surfers on popular social networking
> sites like Facebook, LinkedIn and MySpace. Friend or fraud – protect your
> business from “trusted” friends turned hostile hackers.
>   *Auditor: Bullitt lacked proper controls to prevent online theft<http://www.linkedin.com/e/avn/69238212/36874/EML_anet_nws_title-dnhOon0JumNFomgJt7dBpSBA/>
> * 0 comments »<http://www.linkedin.com/e/avn/69238212/36874/EML_anet_nws_cmnt-dnhOon0JumNFomgJt7dBpSBA/>
> http://www.databreaches.net/?p=7160 | September 17, 2009
> Bullitt County [Kentucky] Fiscal Court did not have sufficient online
> banking controls in place at the time of the June online theft of $415,989,
> according to a report by the state auditor.
>   *Plugin Updating Project: Follow up<http://www.linkedin.com/e/avn/69233307/36874/EML_anet_nws_title-dnhOon0JumNFomgJt7dBpSBA/>
> * 0 comments »<http://www.linkedin.com/e/avn/69233307/36874/EML_anet_nws_cmnt-dnhOon0JumNFomgJt7dBpSBA/>
> http://blog.mozilla.com/security/2009/09/16/plugin-updating-project-follow-up/| September 17, 2009
> I wrote last week about a new project we’ve [Mozilla] started, informing
> our users when they’re running out of date versions of popular plugins. We
> focused our initial efforts on the Adobe Flash Player and now, a week after
> launch, Mozilla’s Numerator, ...
>   *Microsoft releases BinScope and MiniFuzz to the public<http://www.linkedin.com/e/avn/69060485/36874/EML_anet_nws_title-dnhOon0JumNFomgJt7dBpSBA/>
> * 0 comments »<http://www.linkedin.com/e/avn/69060485/36874/EML_anet_nws_cmnt-dnhOon0JumNFomgJt7dBpSBA/>
> Moderated AppSec Feed - OWASP Foundation's shared items in Google Reader |
> September 16, 2009
> Binscope is a binary analysis tool that checks binaries for compliance with
> Microsoft SDL policies. A video demonstrating BinScope as also released.
> Microsoft released one of their file fuzzing tools MiniFuzz and included a
> video de
> Don't want to receive email notifications? Adjust your message settings.<http://www.linkedin.com/e/ahs/36874/EML_anet_settings-dnhOon0JumNFomgJt7dBpSBA/>
> LinkedIn values your privacy. At no time has LinkedIn made your email
> address available to any other LinkedIn user without your permission. ©
> 2009, LinkedIn Corporation.
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-leaders/attachments/20090917/8e22e9e8/attachment.html 

More information about the OWASP-Leaders mailing list