This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Podcast 2"
From OWASP
(→Podcast References: Added 2 references at the beginning of the list) |
m |
||
| Line 1: | Line 1: | ||
'''[[OWASP_Podcast | OWASP Podcast Series]] #2''' | '''[[OWASP_Podcast | OWASP Podcast Series]] #2''' | ||
| − | <b>Recorded December 20, 2008</b> | + | <b>Recorded December 20, 2008</b><br/> |
| − | |||
[http://itunes.apple.com/WebObjects/MZStore.woa/wa/viewPodcast?id=300769012 http://images.apple.com/itunes/overview/images/overview-icon-itunes20081106.jpg] [http://www.owasp.org/download/jmanico/podcast.xml https://www.owasp.org/images/d/d3/Feed-icon-32x32.png] | [http://itunes.apple.com/WebObjects/MZStore.woa/wa/viewPodcast?id=300769012 http://images.apple.com/itunes/overview/images/overview-icon-itunes20081106.jpg] [http://www.owasp.org/download/jmanico/podcast.xml https://www.owasp.org/images/d/d3/Feed-icon-32x32.png] | ||
| + | [http://www.owasp.org/download/jmanico/owasp_podcast_2.mp3 direct download] | ||
"For PCI Compliance, its doesn't say that .. that your site has to be secure. It says you need to put in processes, and that you know, you have to act like you're trying..." - Stephen Craig Evans | "For PCI Compliance, its doesn't say that .. that your site has to be secure. It says you need to put in processes, and that you know, you have to act like you're trying..." - Stephen Craig Evans | ||
Revision as of 02:15, 31 January 2009
Recorded December 20, 2008
direct download
"For PCI Compliance, its doesn't say that .. that your site has to be secure. It says you need to put in processes, and that you know, you have to act like you're trying..." - Stephen Craig Evans
Participants
- Stephen Craig Evans is an independent software security consultant based in southeast Asia. - Jim Manico is a Web Application Architect and Security Engineer for Aspect Security.
Interview with Stephen Craig Evans
- OWASP Summer of Code project wiki, Securing WebGoat using ModSecurity - OWASP Orizon Project - Advice for those who want to contribute to a OWASP project - Status of Web App Sec in the Asia/Pacific region
Podcast References
- Securing WebGoat using ModSecurity project main page - Discussion of the project in OWASP Podcast #1 starting at the 58 minute mark - Application Intrusion Prevention Systems - Fabrice Marie (Slides, HITB 2006 home page) - Remo - Rule Editor for ModSecurity - OWASP NYC AppSec 2008 Conference home page - Building a tool for Security consultants: A story of a customized source code scanner - Dinis Cruz - Ounce O2 web site - The OWASP Orizon Project: towards version 1.0 - Paolo Perego (Slides) - OWASP Orizon project - Please post project questions/comments on the mailing list (subscribe here)
