This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Project Information:template Securing WebGoat using ModSecurity - Final Review - Second Reviewer - F"
From OWASP
(New page: Clik here to return to the previous page. {| style="width:100%" border="0" align="center" ! colspan="3" align="center"...) |
|||
| Line 14: | Line 14: | ||
| style="width:25%; background:#4058A0" align="center"|<font color="white">'''QUESTIONS''' | | style="width:25%; background:#4058A0" align="center"|<font color="white">'''QUESTIONS''' | ||
| colspan="2" style="width:75%; background:#4058A0" align="left"|<font color="white">'''ANSWERS''' | | colspan="2" style="width:75%; background:#4058A0" align="left"|<font color="white">'''ANSWERS''' | ||
| − | |- | + | |- |
| style="width:25%; background:#7B8ABD" align="center"| | | style="width:25%; background:#7B8ABD" align="center"| | ||
1. At what extent have the project deliveries & objectives been accomplished? Having in consideration [[OWASP Summer of Code 2008 Applications#Securing WebGoat using ModSecurity|'''the assumed ones''']], please exemplify writing down those of them that haven't been realised. | 1. At what extent have the project deliveries & objectives been accomplished? Having in consideration [[OWASP Summer of Code 2008 Applications#Securing WebGoat using ModSecurity|'''the assumed ones''']], please exemplify writing down those of them that haven't been realised. | ||
| − | | colspan="2" style="width:75%; background:#cccccc" align="left"| | + | | colspan="2" style="width:75%; background:#cccccc" align="left"| The project deliveries & objectives have been accomplished, despite a very ambitious goal and certain knowledge gab in the start phase of the project. Stephen coped with this very well. |
|- | |- | ||
| style="width:25%; background:#7B8ABD" align="center"| | | style="width:25%; background:#7B8ABD" align="center"| | ||
2. At what extent have the project deliveries & objectives been accomplished? Having in consideration [[OWASP Summer of Code 2008 Applications#Securing WebGoat using ModSecurity|'''the assumed ones''']], please quantify in terms of percentage. | 2. At what extent have the project deliveries & objectives been accomplished? Having in consideration [[OWASP Summer of Code 2008 Applications#Securing WebGoat using ModSecurity|'''the assumed ones''']], please quantify in terms of percentage. | ||
| − | | colspan="2" style="width:75%; background:#cccccc" align="left"| | + | | colspan="2" style="width:75%; background:#cccccc" align="left"| 100%, yet considering the beta quality it is not 100% white. However, as long as webgoat is beta and certain important aspects of ModSecurity are considered experimental, there is no way you can be better than beta. |
|- | |- | ||
| style="width:25%; background:#7B8ABD" align="center"| | | style="width:25%; background:#7B8ABD" align="center"| | ||
3. Please do use the right hand side column to provide advice and make work suggestions. | 3. Please do use the right hand side column to provide advice and make work suggestions. | ||
| − | | colspan="2" style="width:75%; background:#cccccc" align="left"| | + | | colspan="2" style="width:75%; background:#cccccc" align="left"| No further advice and suggestions needed. |
|- | |- | ||
| style="width:25%; background:white" align="center"|'''PART II''' | | style="width:25%; background:white" align="center"|'''PART II''' | ||
| Line 40: | Line 40: | ||
| style="width:25%; background:#7B8ABD" align="center"| | | style="width:25%; background:#7B8ABD" align="center"| | ||
1. Having into consideration the [[:Category:OWASP Project Assessment|OWASP Project Assessment Methodology]] which criteria, if any, haven’t been fulfilled in terms of '''Alpha Quality''' status? | 1. Having into consideration the [[:Category:OWASP Project Assessment|OWASP Project Assessment Methodology]] which criteria, if any, haven’t been fulfilled in terms of '''Alpha Quality''' status? | ||
| − | | colspan="2" style="width:75%; background:#cccccc" align="left"| | + | | colspan="2" style="width:75%; background:#cccccc" align="left"| All criteria in terms of Alpha Quality fulfilled. |
|- | |- | ||
| style="width:25%; background:#7B8ABD" align="center"| | | style="width:25%; background:#7B8ABD" align="center"| | ||
2. Having into consideration the [[:Category:OWASP Project Assessment|OWASP Project Assessment Methodology]] which criteria, if any, haven’t been fulfilled in terms of '''Beta Quality''' status? | 2. Having into consideration the [[:Category:OWASP Project Assessment|OWASP Project Assessment Methodology]] which criteria, if any, haven’t been fulfilled in terms of '''Beta Quality''' status? | ||
| − | | colspan="2" style="width:75%; background:#cccccc" align="left"| | + | | colspan="2" style="width:75%; background:#cccccc" align="left"| It is close to this stage. More interlinking should be done though. For example a link on the webgoat page (in the category section for example) would be helpful for finding the project. |
|- | |- | ||
| style="width:25%; background:#7B8ABD" align="center"| | | style="width:25%; background:#7B8ABD" align="center"| | ||
3. Having into consideration the [[:Category:OWASP Project Assessment|OWASP Project Assessment Methodology]] which criteria, if any, haven’t been fulfilled in terms of '''Release Quality''' status? | 3. Having into consideration the [[:Category:OWASP Project Assessment|OWASP Project Assessment Methodology]] which criteria, if any, haven’t been fulfilled in terms of '''Release Quality''' status? | ||
| − | | colspan="2" style="width:75%; background:#cccccc" align="left"| | + | | colspan="2" style="width:75%; background:#cccccc" align="left"| does not apply (yet) |
|- | |- | ||
| style="width:25%; background:#7B8ABD" align="center"| | | style="width:25%; background:#7B8ABD" align="center"| | ||
Revision as of 21:40, 27 October 2008
Clik here to return to the previous page.
| FINAL REVIEW | ||
|---|---|---|
| PART I | ||
|
Project Deliveries & Objectives |
OWASP Securing WebGoat using ModSecurity Project's Deliveries & Objectives | |
| QUESTIONS | ANSWERS | |
|
1. At what extent have the project deliveries & objectives been accomplished? Having in consideration the assumed ones, please exemplify writing down those of them that haven't been realised. |
The project deliveries & objectives have been accomplished, despite a very ambitious goal and certain knowledge gab in the start phase of the project. Stephen coped with this very well. | |
|
2. At what extent have the project deliveries & objectives been accomplished? Having in consideration the assumed ones, please quantify in terms of percentage. |
100%, yet considering the beta quality it is not 100% white. However, as long as webgoat is beta and certain important aspects of ModSecurity are considered experimental, there is no way you can be better than beta. | |
|
3. Please do use the right hand side column to provide advice and make work suggestions. |
No further advice and suggestions needed. | |
| PART II | ||
|
Assessment Criteria |
||
| QUESTIONS | ANSWERS | |
|
1. Having into consideration the OWASP Project Assessment Methodology which criteria, if any, haven’t been fulfilled in terms of Alpha Quality status? |
All criteria in terms of Alpha Quality fulfilled. | |
|
2. Having into consideration the OWASP Project Assessment Methodology which criteria, if any, haven’t been fulfilled in terms of Beta Quality status? |
It is close to this stage. More interlinking should be done though. For example a link on the webgoat page (in the category section for example) would be helpful for finding the project. | |
|
3. Having into consideration the OWASP Project Assessment Methodology which criteria, if any, haven’t been fulfilled in terms of Release Quality status? |
does not apply (yet) | |
|
4. Please do use the right hand side column to provide advice and make work suggestions. |
||
