<html>
  <head>
    <meta content="text/html; charset=UTF-8" http-equiv="Content-Type">
  </head>
  <body bgcolor="#FFFFFF" text="#000000">
    I'll also drop this as a "production" cheat sheet and demote it back
    to "draft" until it's updated.<br>
    <br>
    Aloha,<br>
    Jim<br>
    <br>
    <div class="moz-cite-prefix">On 8/18/14, 6:19 AM, Neil Smithline
      wrote:<br>
    </div>
    <blockquote
cite="mid:CAH4vb=1WiCc5mhknti-Z8s=fAaLvx3+jkGOSintpkYuvMiyFpg@mail.gmail.com"
      type="cite">
      <div dir="ltr">You're right Ismael. The cheatsheet is for the 2010
        T10, not the 2013. I didn't catch that <blush>
        <div><br>
        </div>
        <div>I tagged the page as old so others won't get confused. I
          wonder if the page will drop in popularity now that I've
          tagged it?</div>
      </div>
      <div class="gmail_extra"><br clear="all">
        <div>
          <div dir="ltr"><br>
            Neil Smithline<br>
            408-634-5764<br>
            <a moz-do-not-send="true"
              href="http://www.neilsmithline.com/" target="_blank">http://www.neilsmithline.com</a></div>
        </div>
        <br>
        <br>
        <div class="gmail_quote">On Fri, Aug 15, 2014 at 6:59 PM, Ismael
          Rocha Gonçalves <span dir="ltr"><<a moz-do-not-send="true"
              href="mailto:ismaelrg@gmail.com" target="_blank">ismaelrg@gmail.com</a>></span>
          wrote:<br>
          <blockquote class="gmail_quote" style="margin:0 0 0
            .8ex;border-left:1px #ccc solid;padding-left:1ex">
            <div dir="ltr">
              <div>A major one is to update to version Top Ten 2013 =)<br>
                <br>
              </div>
              Ismael Goncalves<br>
              <a moz-do-not-send="true"
                href="http://sharingsec.blogspot.com" target="_blank">http://sharingsec.blogspot.com</a><br>
              <div>
                <div class="gmail_extra">
                  <div>
                    <div class="h5"><br>
                      <div class="gmail_quote">
                        On Fri, Aug 15, 2014 at 3:42 PM, Neil Smithline
                        <span dir="ltr"><<a moz-do-not-send="true"
                            href="mailto:neil.smithline@owasp.org"
                            target="_blank">neil.smithline@owasp.org</a>></span>
                        wrote:<br>
                        <blockquote class="gmail_quote" style="margin:0
                          0 0 .8ex;border-left:1px #ccc
                          solid;padding-left:1ex">
                          <div dir="ltr">
                            <div>I've wrestled with the Mediawiki
                              formatting beast before and would be happy
                              - OK, not "happy", let's say"willing" -
                              help.<br>
                            </div>
                            <div>
                              <div><br>
                              </div>
                              <div>I see a few separate tasks that need
                                to be done:</div>
                              <div>1) "Theming" of the table. I think
                                that the format of the table at the top
                                of a T10 page (eg: <a
                                  moz-do-not-send="true"
                                  href="https://www.owasp.org/index.php/Top_10_2013-A3"
                                  target="_blank">https://www.owasp.org/index.php/Top_10_2013-A3</a>)
                                should be followed. </div>
                              <div>2) Formatting of each entry. The
                                current format, a single table with each
                                T10 risk on a single line, needs some
                                tweaking. I'm thinking that a separate
                                themed table for each entry might make
                                sense. I'm considering something like <a
                                  moz-do-not-send="true"
                                  href="http://gyazo.com/53fc6cc8161695f8bd972272e7a9aa26"
                                  target="_blank">http://gyazo.com/53fc6cc8161695f8bd972272e7a9aa26</a>
                                where each entry is themed to look like
                                the table in the top of a T10 entry.</div>
                              <div>3) Cross-linking with the T10 and
                                rest of the wiki. I know that this is
                                supposed to be a cheat sheet but if it
                                is used online, it should be linked.
                                This includes:</div>
                              <div>  - Linking each T10 entry should
                                link to the corresponding page. </div>
                              <div>  - Linking the testing references to
                                their pages (eg: we should link to <a
                                  moz-do-not-send="true"
href="https://www.owasp.org/index.php/Testing_for_SQL_Injection_%28OTG-INPVAL-005%29"
                                  target="_blank">https://www.owasp.org/index.php/Testing_for_SQL_Injection_(OTG-INPVAL-005)</a>).</div>
                              <div>  - Perhaps more...</div>
                              <div>4) Changes to better support
                                different page widths. It may be that
                                reformatting the tables as described in
                                (2) above makes the table work well at
                                different page widths. If not, we'll
                                consider other changes. </div>
                              <div><br>
                              </div>
                              <div>I'll make a copy of this page and
                                reformat it. I'll then reply to this
                                email with a link to the new page for
                                review.</div>
                              <div><br>
                              </div>
                              <div>Neil</div>
                              <div><br>
                              </div>
                            </div>
                            <div>PS: I hadn't seen this page before.
                              It's a good idea.<br>
                            </div>
                            <div><br>
                            </div>
                          </div>
                          <div class="gmail_extra"><br clear="all">
                            <div>
                              <div dir="ltr"><br>
                                Neil Smithline<br>
                                <a moz-do-not-send="true"
                                  href="tel:408-634-5764"
                                  value="+14086345764" target="_blank">408-634-5764</a><br>
                                <a moz-do-not-send="true"
                                  href="http://www.neilsmithline.com/"
                                  target="_blank">http://www.neilsmithline.com</a></div>
                            </div>
                            <br>
                            <br>
                            <div class="gmail_quote">
                              <div>
                                <div>On Thu, Aug 14, 2014 at 4:25 PM,
                                  Bill Sempf <span dir="ltr"><<a
                                      moz-do-not-send="true"
                                      href="mailto:bill.sempf@owasp.org"
                                      target="_blank">bill.sempf@owasp.org</a>></span>
                                  wrote:<br>
                                </div>
                              </div>
                              <blockquote class="gmail_quote"
                                style="margin:0 0 0 .8ex;border-left:1px
                                #ccc solid;padding-left:1ex">
                                <div>
                                  <div>
                                    <div dir="ltr">Hi, folks!
                                      <div><br>
                                      </div>
                                      <div>I love the OWASP Top Ten
                                        Cheat Sheet, and it is one of
                                        the most popular pages on the
                                        OWASP Site this month.</div>
                                      <div><br>
                                      </div>
                                      <div><a moz-do-not-send="true"
                                          href="https://www.owasp.org/index.php/OWASP_Top_Ten_Cheat_Sheet"
                                          target="_blank">https://www.owasp.org/index.php/OWASP_Top_Ten_Cheat_Sheet</a><br>
                                      </div>
                                      <div><br>
                                      </div>
                                      <div>The table layout, however, is
                                        a little 90s.  Can we
                                        collaborate on a more
                                        contemporary look perhaps using
                                        colored blocks, with better
                                        spacing for larger monitors, and
                                        drop the borders? The content is
                                        excellent but as this is one of
                                        the landing pages for 1000s of
                                        users we should try and make it
                                        snap.</div>
                                      <div><br>
                                      </div>
                                      <div>Let me know if I can help!</div>
                                      <span><font color="#888888">
                                          <div><br>
                                          </div>
                                          <div>S</div>
                                        </font></span></div>
                                    <br>
                                  </div>
                                </div>
_______________________________________________<br>
                                OWASP-wiki-editors mailing list<br>
                                <a moz-do-not-send="true"
                                  href="mailto:OWASP-wiki-editors@lists.owasp.org"
                                  target="_blank">OWASP-wiki-editors@lists.owasp.org</a><br>
                                <a moz-do-not-send="true"
                                  href="https://lists.owasp.org/mailman/listinfo/owasp-wiki-editors"
                                  target="_blank">https://lists.owasp.org/mailman/listinfo/owasp-wiki-editors</a><br>
                                <br>
                              </blockquote>
                            </div>
                            <br>
                          </div>
                        </blockquote>
                      </div>
                      <br>
                      <br clear="all">
                      <br>
                    </div>
                  </div>
                  -- <br>
                </div>
              </div>
            </div>
          </blockquote>
        </div>
        <br>
      </div>
    </blockquote>
    <br>
  </body>
</html>