[OWASP-TESTING] RE: Testing Guide Security Code Review section (Draft)

Calderon, Juan Carlos (GE Commercial Finance, NonGE) juan.calderon at ge.com
Tue Mar 2 14:34:44 EST 2004


no, it didn't :(

ok, here it goes again now not ziped

JC

-----Original Message-----
From: owasp-testing-admin at lists.sourceforge.net
[mailto:owasp-testing-admin at lists.sourceforge.net]On Behalf Of Calderon,
Juan Carlos (GE Commercial Finance, NonGE)
Sent: Martes, 02 de Marzo de 2004 01:22 p.m.
To: Daniel
Cc: mark at curphey.com; Nishchal Bhalla; Harinath;
owasp-testing at lists.sourceforge.net
Subject: [OWASP-TESTING] RE: Testing Guide Security Code Review section
(Draft)




waa!

ok, let me me see if it can pass not signed

Thanks
JC

-----Original Message-----
From: Daniel [mailto:Daniel at deeper.co.za]
Sent: Martes, 02 de Marzo de 2004 01:15 p.m.
To: Calderon, Juan Carlos (GE Commercial Finance, NonGE)
Cc: mark at curphey.com; Nishchal Bhalla; Harinath;
owasp-testing at lists.sourceforge.net
Subject: Re: Testing Guide Security Code Review section (Draft)


Juan.. can you kick your mail server and re-attach the attachment

"This e-Mail had an attachment that was removed in order to meet GE 
Security guidelines."

:-)


On 2 Mar 2004, at 17:36, Calderon, Juan Carlos ((GE Commercial Finance, 
NonGE)) wrote:

>
>
> Hi all
>
> Here is my first draft, I have some questions, though. that's why I'm
> not sending my definitive outline (some sections could disappear)
>
> 1 are we making the scope table and the advantages/disadvantages 
> tables?
> how are they going to be defined?
> 2 I, in the white box testing section I recommend "issue tracking" and
> "put in action what you've learned", but it is not supposed to have 
> them
> for all testing methods? IMHO it is not a section specific issue but
> part of the testing framework.
>
> What do you think?
>
> please provide feedback,
>
> JC
>
>
> PS I tried to write Web application sensitive points in a 
> why/what/where
> form (when applicable) without implicitly writing those words.
> [Filename: Security Code Review testing guide (Part 1).ZIP, 
> Content-Type: application/octet-stream]
> This e-Mail had an attachment that was removed in order to meet GE 
> Security guidelines.
> <smime.p7s>

 <<Security Code Review testing guide (Part 1).ZIP>> 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Security Code Review testing guide (Part 1).doc
Type: application/msword
Size: 30208 bytes
Desc: not available
Url : http://lists.owasp.org/pipermail/owasp-testing/attachments/20040302/9ef48acf/attachment.doc 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 2074 bytes
Desc: not available
Url : http://lists.owasp.org/pipermail/owasp-testing/attachments/20040302/9ef48acf/attachment.bin 


More information about the Owasp-testing mailing list