2008 Archives by thread

Messages sorted by: [ subject ] [ author ] [ date ]
More info on this list...

Starting: Thu Jan 3 09:25:01 EST 2008
Ending: Mon Dec 22 13:13:15 EST 2008
Messages: 313

[SC-L] Code Testing Tools Could Be Acquisition Targets in '08 Kenneth Van Wyk
[SC-L] secappdev 2008 Johan Peeters
[SC-L] ENISA issue on Software Security Kenneth Van Wyk
[SC-L] Darkreading: Getting Started Gary McGraw
- [SC-L] Darkreading: Getting Started Gunnar Peterson
  - [SC-L] Darkreading: Getting Started Gary McGraw
- [SC-L] Darkreading: Getting Started Andy Steingruebl
  - [SC-L] Darkreading: Getting Started Gary McGraw
- [SC-L] Darkreading: Getting Started Jim Manico
  - [SC-L] Darkreading: Getting Started Gary McGraw
[SC-L] Open Source Code Contains Security Holes -- Open Source -- InformationWeek Kenneth Van Wyk
- [SC-L] Open Source Code Contains Security Holes -- Open Source -- InformationWeek Gary McGraw
- [SC-L] Open Source Code Contains Security Holes -- Open Source -- InformationWeek Steven M. Christey
[SC-L] XKCD on sane build environments Benjamin Tomhave
[SC-L] Silver Bullet: Ed Amoroso Gary McGraw
- [SC-L] Silver Bullet: Ed Amoroso Ignacio Evans
[SC-L] Programming language comparison? Vincent Verhagen
- [SC-L] Programming language comparison? Robert A. Martin
  - [SC-L] Programming language comparison? Steven M. Christey
    - [SC-L] Programming language comparison? ljknews
    - [SC-L] Programming language comparison? Steven M. Christey
    - [SC-L] Programming language comparison? Robert C. Seacord
    - [SC-L] Programming language comparison? ljknews
    - [SC-L] Programming language comparison? Pete Shanahan
    - [SC-L] Programming language comparison? Shea, Brian A
- [SC-L] Programming language comparison? Craig E. Ward
- [SC-L] Programming language comparison? Vincent Verhagen
[SC-L] Static analysis tool exposition - call for participation Romain Gaucher
[SC-L] Silver Bullet: spaf transcript Gary McGraw
[SC-L] Tech Insight: The Buzz Around Fuzzing - Application and Perimeter Security News Analysis - Dark Reading Kenneth Van Wyk
[SC-L] a little coding humor... Benjamin Tomhave
[SC-L] CALL FOR TOPICS-PAPERS - OWASP AppSec Conference Europe 2008 - May 22-23, Belgium Sebastien Deleersnyder
[SC-L] Darkreading: code scanning Gary McGraw
[SC-L] Michael Howard's Web Log : Introducing SAFECode Kenneth Van Wyk
[SC-L] SDLCs and x.509 at OWASP Belgium, 4 March 2008 Kenneth Van Wyk
[SC-L] SC-L Administrivia: How does the readership feel about sponsorships? Kenneth Van Wyk
[SC-L] Silver Bullet 23 Gary McGraw
[SC-L] PCI: Boon or bust for software security? Kenneth Van Wyk
- [SC-L] PCI: Boon or bust for software security? Bruce Ediger
  - [SC-L] PCI: Boon or bust for software security? Andy Murren
    - [SC-L] PCI: Boon or bust for software security? Benjamin Tomhave
[SC-L] Secure development after release Andy Murren
- [SC-L] Secure development after release bugtraq at cgisecurity.net
[SC-L] CFP: W2SP 2008: Web 2.0 Security and Privacy 2008 Larry Koved
[SC-L] Secure Coding Books Lawson, David L
- [SC-L] Secure Coding Books Jim Manico
  - [SC-L] Secure Coding Books Sebastien Deleersnyder
    - [SC-L] Secure Coding Books Gary McGraw
- [SC-L] Secure Coding Books Goertzel, Karen [USA]
- [SC-L] Secure Coding Books Neil Daswani
- [SC-L] Secure Coding Books Robert C. Seacord
- [SC-L] Secure Coding Books Dean H. Saxe
[SC-L] quick question - SXSW Benjamin Tomhave
- [SC-L] quick question - SXSW William L. Anderson
  - [SC-L] quick question - SXSW Benjamin Tomhave
    - [SC-L] quick question - SXSW Kenneth Van Wyk
    - [SC-L] quick question - SXSW Johan Peeters
    - [SC-L] quick question - SXSW Gunnar Peterson
    - [SC-L] quick question - SXSW John Steven
    - [SC-L] quick question - SXSW Arian J. Evans
    - [SC-L] quick question - SXSW Benjamin Tomhave
    - [SC-L] quick question - SXSW Arian J. Evans
    - [SC-L] quick question - SXSW Mike Lyman
    - [SC-L] quick question - SXSW Arian J. Evans
    - [SC-L] quick question - SXSW Gary McGraw
- [SC-L] quick question - SXSW Andy Steingruebl
  - [SC-L] quick question - SXSW Arian J. Evans
    - [SC-L] quick question - SXSW Andrew van der Stock
[SC-L] implementable process level secure development thoughts Andy Murren
- [SC-L] implementable process level secure development thoughts Gary McGraw
- [SC-L] implementable process level secure development thoughts Wall, Kevin
[SC-L] implementable process level secure development thoughts Roman H.
- [SC-L] implementable process level secure development thoughts Andy Murren
[SC-L] Secure Coding Books Bennett, Jason
[SC-L] quick question - SXSW Gary McGraw
[SC-L] quick question - SXSW Andy Steingruebl
[SC-L] quick question - SXSW Gary McGraw
[SC-L] Software security definition(s) Arian J. Evans
- [SC-L] Software security definition(s) Mike Lyman
[SC-L] CERT C Secure Coding Standard - last call for reviewers Robert C. Seacord
[SC-L] Secure Development World ? Gadi Evron
- [SC-L] Secure Development World ? Steven M. Christey
  - [SC-L] Secure Development World ? Gadi Evron
[SC-L] Secure Development World ? Robert A. Martin
[SC-L] Software Security Bibliography Gary McGraw
[SC-L] Bringing two threads together: PCI & SXSW Epstein, Jeremy
[SC-L] Silver Bullet turns 2: Mary Ann Davidson Gary McGraw
- [SC-L] Silver Bullet turns 2: Mary Ann Davidson Andrew van der Stock
[SC-L] 0x000000.com SuiGenchi Demonstration Benjamin Tomhave
[SC-L] Silver Bullet turns 2: Mary Ann Davidson Stephen Craig Evans
- [SC-L] Silver Bullet turns 2: Mary Ann Davidson Gary McGraw
- [SC-L] Silver Bullet turns 2: Mary Ann Davidson Arian J. Evans
[SC-L] Silver Bullet turns 2: Mary Ann Davidson Arian J. Evans
[SC-L] Invitation - OWASP AppSec Europe May 19-22 2008 - Belgium Sebastien Deleersnyder
[SC-L] InformIT: budgeting for software security Gary McGraw
- [SC-L] InformIT: budgeting for software security Stephen Craig Evans
  - [SC-L] InformIT: budgeting for software security Jim Manico
    - [SC-L] InformIT: budgeting for software security Wall, Kevin
    - [SC-L] InformIT: budgeting for software security ljknews
    - [SC-L] InformIT: budgeting for software security Jim Manico
    - [SC-L] InformIT: budgeting for software security Dave Aronson
    - [SC-L] InformIT: budgeting for software security Stephen Craig Evans
    - [SC-L] InformIT: budgeting for software security Kenneth Van Wyk
    - [SC-L] InformIT: budgeting for software security Stephen Craig Evans
[SC-L] quick question - SXSW Stephen Craig Evans
[SC-L] InformIT: budgeting for software security Gary McGraw
[SC-L] Silver Bullet 25: Jon Swartz Gary McGraw
[SC-L] Lateral SQL injection paper Kenneth Van Wyk
- [SC-L] Lateral SQL injection paper Jim Manico
  - [SC-L] Lateral SQL injection paper Joe Teff
    - [SC-L] Lateral SQL injection paper Steven M. Christey
    - [SC-L] Lateral SQL injection paper Arian J. Evans
    - [SC-L] Lateral SQL injection paper Mary and Glenn Everhart
- [SC-L] Lateral SQL injection paper Arian J. Evans
- [SC-L] Lateral SQL injection paper Pascal Meunier
[SC-L] GCC and pointer overflows [LWN.net] Kenneth Van Wyk
- [SC-L] GCC and pointer overflows [LWN.net] Robert C. Seacord
- [SC-L] GCC and pointer overflows [LWN.net] der Mouse
- [SC-L] GCC and pointer overflows [LWN.net] Epstein, Jeremy
  - [SC-L] GCC and pointer overflows [LWN.net] ljknews
  - [SC-L] GCC and pointer overflows [LWN.net] Leichter, Jerry
    - [SC-L] GCC and pointer overflows [LWN.net] ljknews
[SC-L] Reminder: W2SP 2008: Web 2.0 Security and Privacy 2008 Larry Koved
[SC-L] Microsoft's message at RSA Gary McGraw
- [SC-L] Microsoft's message at RSA Gunnar Peterson
  - [SC-L] Microsoft's message at RSA Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]
- [SC-L] Microsoft's message at RSA Andy Steingruebl
  - [SC-L] Microsoft's message at RSA Gary McGraw
    - [SC-L] Microsoft's message at RSA Andy Steingruebl
    - [SC-L] Microsoft's message at RSA Gunnar Peterson
[SC-L] MetriCon 3.0 Gunnar Peterson
[SC-L] Invitation - OWASP AppSec Europe May 19-22 2008 - Belgium Sebastien Deleersnyder
[SC-L] GCC and pointer overflows karger at watson.ibm.com
[SC-L] No general-purpose computer, or everything under surveillance? David A. Wheeler
- [SC-L] No general-purpose computer, or everything under surveillance? Andy Steingruebl
- [SC-L] No general-purpose computer, or everything under surveillance? Gunnar Peterson
[SC-L] Silver Bullet 26: Adam Shostack Gary McGraw
[SC-L] informIT: web 3.0 security Gary McGraw
[SC-L] Coverity to Buy Codefast Kenneth Van Wyk
[SC-L] Silver Bullet (transcripts) Gary McGraw
[SC-L] DistriNet Research Group Kenneth Van Wyk
[SC-L] new book Jason Grembi
[SC-L] Search Security video Gary McGraw
[SC-L] informIT: DMCA Gary McGraw
[SC-L] Security Bonuses for Vista Programmers Kenneth Van Wyk
[SC-L] OWASP: The Application Security Desk Reference McGovern, James F (HTSC, IT)
[SC-L] Silver Bullet: Gunnar Peterson Gary McGraw
[SC-L] Any SC-Lers going to FIRST in Vancouver next week? Kenneth Van Wyk
- [SC-L] International Symposium on Engineering Secure Software and Systems (ESSoS) Brian Chess
[SC-L] Code Testing Tools Could Be Acquisition Targets in '08 Tom Brennan
[SC-L] InternetNews Realtime IT News - Merchants Cope With PCI Compliance Kenneth Van Wyk
- [SC-L] InternetNews Realtime IT News - Merchants Cope With PCI Compliance Gunnar Peterson
  - [SC-L] InternetNews Realtime IT News - Merchants Cope With PCI Compliance Michael Gavin
    - [SC-L] InternetNews Realtime IT News - Merchants Cope With PCI Compliance Stephen Craig Evans
    - [SC-L] InternetNews Realtime IT News - Merchants Cope With PCI Compliance Michael Gavin
  - [SC-L] InternetNews Realtime IT News - Merchants Cope With PCI Compliance Arian J. Evans
- [SC-L] InternetNews Realtime IT News - Merchants Cope With PCI Compliance ljknews
- [SC-L] InternetNews Realtime IT News - Merchants Cope With PCICompliance Chris Wysopal
[SC-L] Root Canal Treatment vs Source Code Review Jonathan Leffler
- [SC-L] Root Canal Treatment vs Source Code Review Mary and Glenn Everhart
  - [SC-L] Root Canal Treatment vs Source Code Review ljknews
[SC-L] July 23: Stanford Emerging Threats and Defenses Symposium Neil Daswani
[SC-L] Google opens RatProxy security code - SC Magazine US Kenneth Van Wyk
[SC-L] online game security Gary McGraw
[SC-L] Animations for training Gary McGraw
[SC-L] Silver Bullet: ches Gary McGraw
[SC-L] application assessment factories Gary McGraw
- [SC-L] Interesting academic job announcement Goertzel, Karen [USA]
[SC-L] Goodbye to faulty software? Jeremy Epstein
[SC-L] Administrivia Kenneth Van Wyk
- [SC-L] Application Security Conference Tom Brennan
- [SC-L] Conference Announcement Tom Brennan
[SC-L] SB transcript: Shostack Gary McGraw
[SC-L] New podcast: Techtarget Gary McGraw
[SC-L] software security growing (informIT) Gary McGraw
[SC-L] Silver Bullet 29: Dennis Fisher Gary McGraw
[SC-L] Denial of Service Survey Tyler Reguly
[SC-L] Survey Gary McGraw
- [SC-L] Survey ljknews
  - [SC-L] Survey Paco Hope
    - [SC-L] Survey ljknews
    - [SC-L] Survey Jim Manico
    - [SC-L] Survey Stephen Craig Evans
    - [SC-L] Survey Jim Manico
    - [SC-L] Survey ljknews
    - [SC-L] Survey Paco Hope
    - [SC-L] Survey Jim Manico
[SC-L] Survey Gary McGraw
[SC-L] Survey ljknews
- [SC-L] Survey Romain Gaucher
[SC-L] Survey thread killer Kenneth Van Wyk
[SC-L] Building Secure Web Applications Training in Minneapolis Gunnar Peterson
[SC-L] RUXCON 2008 Final Call For Papers cfp at ruxcon.org.au
[SC-L] Free CBT: PCI DSS for Developers Roman H.
[SC-L] News flurry: informIT, Java Rules, and Microsoft's SDL Pro network Gary McGraw
[SC-L] SD West CFP Gary McGraw
[SC-L] Silver Bullet transcript Cheswick Gary McGraw
[SC-L] informIT feed Gary McGraw
[SC-L] Silver Bullet: Ken van Wyk Gary McGraw
- [SC-L] Silver Bullet McGovern, James F (HTSC, IT)
  - [SC-L] Silver Bullet Gary McGraw
    - [SC-L] Silver Bullet Gunnar Peterson
    - [SC-L] Silver Bullet Gary McGraw
    - [SC-L] Silver Bullet McGovern, James F (HTSC, IT)
  - [SC-L] Robert Seacord on the CERT C Secure Coding Standard Robert Seacord
[SC-L] Secure Coding Standards anon sec
- [SC-L] Secure Coding Standards Bedirhan Urgun
  - [SC-L] Secure Coding Standards anon sec
- [SC-L] Secure Coding Standards Jim Manico
  - [SC-L] Secure Coding Standards Jim Manico
    - [SC-L] Secure Coding Standards anon sec
  - [SC-L] Secure Coding Standards Rohit Lists
- [SC-L] Secure Coding Standards Cassidy, Colin (GE Infra, Energy)
- [SC-L] Secure Coding Standards Robert C. Seacord
- [SC-L] Secure Coding Standards Robert Martin
[SC-L] Silver Bullet Gary McGraw
[SC-L] AdaCore - Home > GNAT Pro > The Tokeneer Project Kenneth Van Wyk
[SC-L] Human Elements of Security Survey Sammy Migues
- [SC-L] Human Elements of Security Survey ljknews
[SC-L] Fwd: Join us in Portugal for the biggest concentration of OWASP training so far! Sebastien Deleersnyder
[SC-L] (fwd) informIT: A Software Security Framework Kenneth Van Wyk
- [SC-L] (fwd) informIT: A Software Security Framework McGovern, James F (HTSC, IT)
- [SC-L] (fwd) informIT: A Software Security Framework Kenneth Van Wyk
  - [SC-L] The CERT C Secure Coding Standard Robert Seacord
    - [SC-L] FINAL NOTICE: OWASP Portugal EU Summit Dave Wichers
[SC-L] (fwd) informIT: A Software Security Framework Gary McGraw
[SC-L] cat out of bag: article to be published in Computer in dec Gary McGraw
[SC-L] Cat out of the bag? Jonathan Leffler
- [SC-L] Cat out of the bag? ljknews
  - [SC-L] Cat out of the bag? Gunnar Peterson
[SC-L] Cat out of the bag? Gary McGraw
[SC-L] Wysopal says tipping point reached... Benjamin Tomhave
- [SC-L] Wysopal says tipping point reached... Steven M. Christey
[SC-L] OWASP EU Summit Portugal 08: join us via WebEx on today's presentations! Dinis Cruz
[SC-L] Educational web site "hack this" announced Kenneth Van Wyk
[SC-L] Language agnostic secure coding guidelines/standards? Pete Werner
- [SC-L] Language agnostic secure coding guidelines/standards? AF
- [SC-L] Language agnostic secure coding guidelines/standards? McGovern, James F (HTSC, IT)
- [SC-L] Language agnostic secure coding guidelines/standards? Andrew van der Stock
  - [SC-L] Language agnostic secure coding guidelines/standards? John Steven
  - [SC-L] Language agnostic secure coding guidelines/standards? Steven M. Christey
    - [SC-L] Language agnostic secure coding guidelines/standards? Gary McGraw
    - [SC-L] Language agnostic secure coding guidelines/standards? Pete Werner
    - [SC-L] Language agnostic secure coding guidelines/standards? Dave Wichers
- [SC-L] Language agnostic secure coding guidelines/standards? Robert Seacord
[SC-L] Language agnostic secure coding guidelines/standards? David A. Wheeler
[SC-L] Silver Bullet and informIT: Jeremiah Grossman Gary McGraw
- [SC-L] Silver Bullet and informIT: Jeremiah Grossman Stephen Craig Evans
[SC-L] Unclassified NSA document on .NET 2.0 Framework Security Romain Gaucher
- [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Dinis Cruz
  - [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Mike Lyman
    - [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Gary McGraw
    - [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Gunnar Peterson
    - [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Stephen Craig Evans
    - [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Gunnar Peterson
    - [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Stephen Craig Evans
    - [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Stephen Craig Evans
    - [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Gary McGraw
    - [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Gunnar Peterson
    - [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Andy Steingruebl
    - [SC-L] Unclassified NSA document on .NET 2.0 Framework Security ljknews
    - [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Shea, Brian A
    - [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Susan Bradley, CPA
    - [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Dana Epp
[SC-L] Opportunity at DTCC Kenneth Van Wyk
[SC-L] Software Assist to Find Least Privilege Mark Rockman
- [SC-L] Software Assist to Find Least Privilege Steven M. Christey
  - [SC-L] Software Assist to Find Least Privilege Gary McGraw
- [SC-L] Software Assist to Find Least Privilege ljknews
- [SC-L] Software Assist to Find Least Privilege Susan Bradley, CPA
- [SC-L] Software Assist to Find Least Privilege Pete Werner
[SC-L] Unclassified NSA document on .NET 2.0 Framework Security Peter G. Neumann
[SC-L] The problem with (Java's) Security Policy (Was: Unclassified NSA document on .NET 2.0 Framework Security) John Wilander
- [SC-L] The problem with (Java's) Security Policy (Was: Unclassified NSA document on .NET 2.0 Framework Security) Rohit Lists
[SC-L] Unclassified NSA document on .NET 2.0 Framework Security Gunnar Peterson
- [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Stephen Craig Evans
  - [SC-L] Regional differences in software security Gary McGraw
    - [SC-L] Regional differences in software security Kenneth Van Wyk
    - [SC-L] Regional differences in software security Stephen Craig Evans
  - [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Susan Bradley
  - [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Jerry Leichter
    - [SC-L] Unclassified NSA document on .NET 2.0 Framework Security Stephen Craig Evans
[SC-L] Unclassified NSA document on .NET 2.0 Framework Security ljknews
[SC-L] How Can You Tell It Is Written Securely? Mark Rockman
- [SC-L] How Can You Tell It Is Written Securely? ljknews
- [SC-L] How Can You Tell It Is Written Securely? Stephen Craig Evans
- [SC-L] How Can You Tell It Is Written Securely? Dana Epp
- [SC-L] How Can You Tell It Is Written Securely? Jim Manico
  - [SC-L] How Can You Tell It Is Written Securely? McGovern, James F (HTSC, IT)
    - [SC-L] How Can You Tell It Is Written Securely? Andrew van der Stock
    - [SC-L] How Can You Tell It Is Written Securely? ljknews
- [SC-L] How Can You Tell It Is Written Securely? Stephen Craig Evans
[SC-L] Introducing my OWASP Summer of Code project, "Securing WebGoat using ModSecurity" Stephen Craig Evans
- [SC-L] Introducing my OWASP Summer of Code project, "Securing WebGoat using ModSecurity" Jim Manico
  - [SC-L] Introducing my OWASP Summer of Code project, "Securing WebGoat using ModSecurity" Stephen Craig Evans
[SC-L] FW: How Can You Tell It Is Written Securely? Herman Stevens
- [SC-L] FW: How Can You Tell It Is Written Securely? Marcin Wielgoszewski
  - [SC-L] FW: How Can You Tell It Is Written Securely? Herman Stevens
    - [SC-L] FW: How Can You Tell It Is Written Securely? McGovern, James F (HTSC, IT)
    - [SC-L] FW: How Can You Tell It Is Written Securely? Jim Manico
    - [SC-L] FW: How Can You Tell It Is Written Securely? McGovern, James F (HTSC, IT)
    - [SC-L] FW: How Can You Tell It Is Written Securely? McGovern, James F (HTSC, IT)
[SC-L] Book: Web Security Testing Cookbook Gary McGraw
[SC-L] Enhancing the Development Life Cycle to Produce Secure Software Goertzel, Karen [USA]
[SC-L] Fwd: ESSoS'09: Call for Participation Kenneth Van Wyk
[SC-L] Project announce: The OWASP Source Code Flaws Top 10 Paolo Perego
[SC-L] top 10 software security surprises Gary McGraw
- [SC-L] top 10 software security surprises Pravir Chandra
- [SC-L] top 10 software security surprises Kenneth Van Wyk
  - [SC-L] top 10 software security surprises Ivan Ristic
  - [SC-L] top 10 software security surprises Brian Chess
[SC-L] CWE/SANS Top 25 Most Dangerous Programming Errors Steven M. Christey
[SC-L] Silver Bullet: Laurie Williams Gary McGraw

Last message date: Mon Dec 22 13:13:15 EST 2008
Archived on: Mon Dec 22 23:31:31 EST 2008

Messages sorted by: [ subject ] [ author ] [ date ]
More info on this list...

This archive was generated by Pipermail 0.09 (Mailman edition).