[Owasp-leaders] OWASP Top 10 - 2013 Release Candidate Now Available

Dave Wichers dave.wichers at owasp.org
Wed Feb 20 03:28:57 UTC 2013

What's being debated has nothing to do with whether OWASP is following
Federal rules for a 501c3 non-profit. OWASP is following all regulatory
rules/requirements. This debate is about how OWASP as OWASP should/wants to
be run.


And I agree that OWASP can be run very differently than other non-profits if
we want to, as long as we stay within the law, which we are.




From: owasp-leaders-bounces at lists.owasp.org
[mailto:owasp-leaders-bounces at lists.owasp.org] On Behalf Of Yvan Boily
Sent: Tuesday, February 19, 2013 4:04 PM
To: Konstantinos Papapanagiotou
Cc: OWASP Leaders
Subject: Re: [Owasp-leaders] OWASP Top 10 - 2013 Release Candidate Now



> I'm lucky enough to have traveled the world and visited a large number
> of chapters along the way. I also track several dozen active OWASP
> projects. I also consulted a non-profit speciality lawyer before
> joining the board. I'm not shooting from the hip here, I'm well
> prepared, I did my homework, and I'm not picking this fight lightly.

In all honesty and with all due respect, I could not care less about all the
legal chit-chat of how non-profits have to function in America. I think we
are quite different than a typical American non-profit. Do not take me wrong
here, this discussion is much deeper and profound than any law or


You might not, but the IRS (or some other appropriate regulatory body?)
might.  It would be a shame if OWASP were to suffer because of a
misunderstanding or deliberate breach of the requirements of operating under
the legal model that OWASP does.  

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20130219/89fe0450/attachment.html>

More information about the OWASP-Leaders mailing list