[Owasp-leaders] Proposing new guidelines to start code/tool projects

Colin Watson colin.watson at owasp.org
Fri Aug 29 09:14:56 UTC 2014


Yes, that is the correct approach. And then making sure we have all
the master files before paying.

It has been suggested more than once before, but somehow OWASP won't
or can't do it.


On 29 August 2014 00:56, Jim Manico <jim.manico at owasp.org> wrote:
> Colin,
> When hiring contractors to work on graphic/design projects, just stipulate
> in the contact that the source design files are part of delivery. Problem
> solved. I've been adding this to my design contacts for over a decade and
> never had a problem. I'm sorry for your struggles, Colin, but again this is
> easily fixed at least for future design contract work.
> - Jim
> On 8/28/14, 12:23 PM, Colin Watson wrote:
>> Timur
>>> I suggest that even better spending would be to create professional
>>> document
>>> guideline for OWASP, how to create professional guides - it is not rocket
>>> science (even w/o PhD,)). Not only guide but QA criteria.
>> OWASP has paid many agencies and contractors lots of money to do
>> graphical design work, such as for corporate documents and events. But
>> I have always been unable to get the source design files (Illustrator,
>> InDesign, Quark etc) released. That makes it much harder for
>> volunteers as we have to start from scratch each time. I thought
>> "everything OWASP did is open", but that isn't the case for such
>> things.
>> It took me almost 3 years of begging and chasing to get hold of the
>> 2008-9 guidebook cover files, and never managed to squeeze the files
>> out of OWASP for the rest of the stuff that has been paid for. OWASP
>> even paid for the design of web-resolution icons and logos, but OWASP
>> doesn't have any master files, so we simply cannot use them in/on our
>> documents or promotional materials. I am very reluctant therefore for
>> OWASP to pay third parties for anything that is not open sourced. It
>> ought to be one of the contract criteria.
>> Colin
>> _______________________________________________
>> OWASP-Leaders mailing list
>> OWASP-Leaders at lists.owasp.org
>> https://lists.owasp.org/mailman/listinfo/owasp-leaders

More information about the OWASP-Leaders mailing list