[OWASP-TESTING] hows everyone getting on?

Eoin Keary eoinkeary at hotmail.com
Thu Jul 14 07:03:28 EDT 2005

If Guide 2.0 is concentrating on code reviews, shall i continue doing a code 
review document as a splinter of the Testing guide or go back to integrating 
it as part of the Testing gude?

My code review doc focuses on:

.NET and Java Best practice mitigating against the common vulns. providing 
code examples.
Code review managment and pitfalls in the process.
How to actually perform a code review.
Framework issues.


>From: Andrew van der Stock <vanderaj at greebo.net>
>To: owasp-testing at lists.sourceforge.net
>CC: Daniel Cuthbert <daniel.cuthbert at owasp.org>
>Subject: Re: [OWASP-TESTING] hows everyone getting on?
>Date: Thu, 14 Jul 2005 16:59:11 +1000
>There is an RFC for this, RFC 2606. All URLs should be example. 
>{com,.net,.org} as they are reserved for this exact purpose.
>Lastly, please feel free to use the Guide 2.0 for content and ideas.  I'm 
>concentrating the Guide 2.0 on code reviews, not pen testing, but  there is 
>a great deal of overlap.
>On 11/07/2005, at 7:50 PM, Daniel Cuthbert wrote:
>>screenshots are important, and yes, we have to make sure there are  no 
>>public domain names :0)
>This SF.Net email is sponsored by the 'Do More With Dual!' webinar 
>July 14 at 8am PDT/11am EDT. We invite you to explore the latest in dual
>core and dual graphics technology at this free one hour event hosted by HP, 
>AMD, and NVIDIA.  To register visit http://www.hp.com/go/dualwebinar
>owasp-testing mailing list
>owasp-testing at lists.sourceforge.net

More features, more fun, still absolutely FREE - get Messsenger 7.0! 

More information about the Owasp-testing mailing list