[Owasp-leaders] Astyran: The New OWASP Testing Guide - Style over Content
vanderaj at owasp.org
Sun Aug 26 04:23:32 UTC 2012
Although I agree that this is a reasonable position on the problem (the CN
scheme doesn't need to be perfect or complete), it's important to realise
that there are four use cases for the CN:
Code Review Guide
That means we should remove "Testing for..." from the name as it's not
appropriate for 3/4 of the Guides using the CN.
An obvious mistake is actually trying to include every weakness in a
proactive controls document. I will deliberately avoid some of the things
in the Testing Guide as they are not appropriate for the Development Guide.
And vice versa.
On Thu, Aug 23, 2012 at 11:37 PM, Tom Brennan <tomb at owasp.org> wrote:
> Nice blog post - now let's move the ball
> Tom Brennan
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the OWASP-Leaders