I am very much interested in this. We may even find a couple of $100 to pay for some security testing of web2py. Let me know what we need to do.
Massimo On May 22, 8:53 am, GoldenTiger <[email protected]> wrote: > Well, I have been working for years as security auditor and etichal > hacking. Last years I decided focusing at more creative works and I > started personal projects. > I can do tests against web2py, no problem, but first I want to > understand the framework as well as possible. > a friend of mine who audits banks web and networks is interested in > python frameworks as I said him, so they could be a good help > In my opinion, the most important thing in secure software is the > design and the logic, ( microsoft declared some windows desing flaws > as a not possible solution) > since web2py was designed 100% before implemention, I can say that > web2py is probably one of the most consistent frameworks today > :D

