[WEB SECURITY] 2009 Top 25 Programming Errors

Marcin Wielgoszewski marcinw86 at gmail.com
Wed Jan 14 14:11:02 EST 2009


I'm sorry to say, it has just happened:

http://searchsecurity.techtarget.com/news/article/0,289142,sid14_gci1344962,00.html

On Wed, Jan 14, 2009 at 1:20 PM, Arian J. Evans
<arian.evans at anachronic.com> wrote:
> Anyway -- I think OWASP and WASC people need to get involved or you
> are going to find that your RFPs for tools, training, and testing are
> comprised of this SANS/MITRE Top 25. People (Software Security
> Consumers) are already starting to use the "Top 25" this way, and
> desperate vendors & solutions are actively steering this to try and
> give them some legitimacy. SANS has no clue in this problem domain and
> will take this banner and charge forward with it.

----------------------------------------------------------------------------
Join us on IRC: irc.freenode.net #webappsec

Have a question? Search The Web Security Mailing List Archives: 
http://www.webappsec.org/lists/websecurity/archive/

Subscribe via RSS: 
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]

Join WASC on LinkedIn
http://www.linkedin.com/e/gis/83336/4B20E4374DBA



More information about the websecurity mailing list