Re: [SC-L] OWASP Publicity

2007-11-19 Thread James Stibbards
Ben, Good comments. It may be true that older technology is what today's Sr Managers have the most familiarity with, however... In my opinion, it's not that familiarity that we (or they) should rely on, in order to be well-informed, and thus be making good security-related decisions. It's no

RE: [SC-L] Bugs and flaws

2006-02-03 Thread James Stibbards
Hi Gary, In one of your prior posts you mentioned documentation. I believe that the problem with WMF was that someone had not examined WMF as a postential source of vulnerabilities, since the embedded code was an legacy capability. My belief is that one of the keys to finding flaws lies in the