[OWASP-TESTING] Contribution to OWASP testing: Configuration Management (infrastructure and application)

Daniel Cuthbert daniel.cuthbert at owasp.org
Thu Aug 18 13:57:53 EDT 2005


The 2nd phase of the Testing guide isnt in CVS yet as we are still  
waiting for the finished contributions from everyone. Once this has  
been done (im hoping by the end of Aug), ill join it all up and then  
start adding to CVS


On 18 Aug 2005, at 01:46, Andrew van der Stock wrote:

> Yes - please review both the Guide and your content. I'm working on  
> version 2.0.2 at the moment, but any changes or things we've missed  
> should go into 2.1.
>
> My view on the Guide vs Testing:
>
> Guide - for solution designers, architects and developers. Positive  
> - how to protect your application
> Testing - for pen testers and auditors. Negative - what to look for  
> and how to detect flaws in the tested application
>
> YMMV
>
> Does anyone have a consolidated copy of the Testing Guide  
> somewhere? Ie is it in CVS?
>
> thanks,
> Andrew
>
> On 04/08/2005, at 9:02 PM, Javier Fernandez-Sanguino wrote:
>
>>
>> In any case, reviewing the OWASP Guide, doesn't it overlap quite a  
>> lot with the testing guide? People might want to review what the  
>> sections in the Guide related to their sections currently speak of.
>>
>>
>
>
> -------------------------------------------------------
> SF.Net email is Sponsored by the Better Software Conference & EXPO
> September 19-22, 2005 * San Francisco, CA * Development Lifecycle  
> Practices
> Agile & Plan-Driven Development * Managing Projects & Teams *  
> Testing & QA
> Security * Process Improvement & Measurement * http://www.sqe.com/ 
> bsce5sf
> _______________________________________________
> owasp-testing mailing list
> owasp-testing at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/owasp-testing
>
>





More information about the Owasp-testing mailing list