[Owasp-leaders] "Powered by OWASP"

Larry Conklin larry.conklin at owasp.org
Mon Nov 24 16:19:05 UTC 2014


I think that saying they use OWASP as a starting point is ok. If they use our logo you should be able to click it and go to OWASP top ten or a generic page that says OWASP is vendor neutral. 

Sent from my iPhone
Larry Conklin, CISSP


> On Nov 24, 2014, at 10:09 AM, Colin Watson <colin.watson at owasp.org> wrote:
> 
> While we are exploring what is and is not acceptable, what do we think
> about this:
> 
>   http://www.hackinsight.org/free-content.html
> 
>   http://www.hackinsight.org/free-content,37.html
> 
> I think it is good people republish OWASP's free content, but am less
> sure about the use of "we" in "To achieve this we aligned the
> testing....", and "Hack Insight Magazine supports this project under
> the Creative Commons 2.5 License." To others it sounds like their
> magazine somehow created the content.
> 
> Colin
> 
> 
> 
> 
> 
>> On 24 November 2014 at 16:01, Paul Ritchie <paul.ritchie at owasp.org> wrote:
>> Leaders:
>> Just to reassure everyone, we are spending some time updating  the branding
>> rules & policies, so we can apply consistently to each of these issues that
>> pop up.  Often a over-zealous marketing type gets creative with their ad
>> words, and we just have to remind them of a couple reasonable alternatives.
>> 
>> This one is not so blatant that it requires an immediate 'cease & desist',
>> but we will reach out to them shortly.
>> Keep up the dialogue though, its good to have ideas and consensus from the
>> community when applying these types of policies, especially in an
>> international arena.
>> Paul
>> 
>> Best Regards, Paul Ritchie
>> OWASP Interim Executive Director
>> paul.ritchie at owasp.org
>> 
>> 
>> On Sun, Nov 23, 2014 at 11:32 AM, Larry Conklin <larry.conklin at owasp.org>
>> wrote:
>>> 
>>> I agreed it makes it look like it's approved by OWASP. You can't even
>>> click on the OWASP icon to be taken to OWASP site.
>>> 
>>> I think this is an issue that the board and Paul needs to address with the
>>> vendor.
>>> 
>>> Larry
>>> 
>>>> On Thu, Nov 20, 2014 at 9:57 AM, psiinon <psiinon at gmail.com> wrote:
>>>> 
>>>> Just seen this site: http://scan.webguardshield.com/
>>>> 
>>>> The "Powered by .." section appears to me to imply its supported by
>>>> OWASP, which of course it isnt.
>>>> Does anyone else read it that way?
>>>> If so, whats the correct approach for dealing with these sort of things?
>>>> 
>>>> Simon
>>>> 
>>>> --
>>>> OWASP ZAP Project leader
>>>> 
>>>> _______________________________________________
>>>> OWASP-Leaders mailing list
>>>> OWASP-Leaders at lists.owasp.org
>>>> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>> 
>> 
>> _______________________________________________
>> OWASP-Leaders mailing list
>> OWASP-Leaders at lists.owasp.org
>> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>> 


More information about the OWASP-Leaders mailing list