[Owasp-leaders] Security 101 Mailing List?

psiinon psiinon at gmail.com
Thu Jan 26 07:31:14 UTC 2012

Great idea.
I'd definitely sign up and answer any questions I could.
+1 from me :)


On 25 Jan 2012 23:27, "Michael Coates" <michael.coates at owasp.org> wrote:

I recently gave a security presentation to a group of developers in the
health care startup scene.  There was great turnout and they really loved
Webgoat (delivered via OWASP BWA).  As I left the presentation I pointed
them at a variety of OWASP links - top 10, cheat sheets, secure coding
guidelines - but I felt that it was a missed opportunity to really engage
the group that had so much to gain from OWASP.

What are people's thoughts about establishing a OWASP-Security-101 mailing
list?  The idea would be to have this be a public list where developers
would ask basic/intro web security questions.  We (OWASP leaders) would
then direct people to available OWASP resources or answer the questions

This idea would create an ecosystem with developers that are not security
experts per se (e.g. getting past the echo chamber). In addition, this will
quickly identify gaps in OWASP resources ( 5 questions about topic X and we
have no OWASP page on that topic).

The goal here isn't to replace something like stack overflow, but instead
to create an inviting space within OWASP where we can integrate more
developers and publicize/enhance OWASP tools, resources, etc.

One important thing for this new list would be that it's a safe place to
ask "dumb" questions.  I think we could really distinguish ourselves here
since many people are nervous about jumping into a more technical mailing
list and just getting the "Did you google it?" type answer.

Thoughts?  OWASP-Security-101?

Michael Coates
michael.coates at owasp.org

OWASP-Leaders mailing list
OWASP-Leaders at lists.owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20120126/514e7590/attachment.html>

More information about the OWASP-Leaders mailing list