WASC Mailing Lists The Web Security Mailing List Archives Post a message by sending email to: websecurity@webappsec.org Subscribe by sending email to: websecurity-subscribe@webappsec.org Unsubscribe by sending email to: websecurity-unsubscribe@webappsec.org Subscribe to our RSS Feed http://www.webappsec.org/rss/websecurity.rss Browse the Mailing List Archives at: http://www.webappsec.org/lists/websecurity/archive/ Search the mail archives General Information What is The Web Security Mailing List? The Web Security Mailing List is an open information forum for discussing topics relevant to web security. Topics include, but are not limited to, industry news and technical discussions surrounding web applications, proxies, honeypots, new attack types, methodologies, application firewalls, discoveries, experiences, web servers, application servers, database security, tools, solutions, and others. The Web Security Mailing List is maintained by the Web Application Security Consortium (WASC) http://www.webappsec.org The Web Application Security Consortium (WASC) is an international group of experts, industry practitioners, and organizational representatives who produce open source and widely agreed upon best-practice security standards for the World Wide Web. As an active community, WASC facilitates the exchange ideas and organizes several industry projects. WASC consistently releases technical information, contributed articles, security guidelines, and other useful documentation. Businesses, educational institutions, governments, application developers, security professionals, and software vendors all over the world utilize our materials to assist with the challenges presented by web application security. Volunteering to participate in WASC related activities is free and open to all. When was The Web Security Mailing List created? April, 2005 What is appropriate content? As a general rule, ask your questions concisely and politely. Post should be respectful, contain no foul language or personal deragatory remarks. When voicing disagreement or dislike for something, again be polite and respectful. Post Guidelines: The mailing list dicussion is meant to be informative and collaborative. All postings must be in English. Post should be text based (no html) Questions and conversation surrounding relevant to the above topics. Posts announcing "new" and/or updated commercial products may be approved provided they are relevant to the list, restricted to one paragraph in length, contain factual information, and free of marketing hype. Open source product announcements carry the same requirements, but may be a full page in length. What is inappropriate content? Rants, flames, ethics or morality disussion, and general inflamatory conduct. Non web security related posts Topics of an illegal or disreputable nature HTML posts Product advertisements "How to hack into..." questions Unresolved security issues within an actual website. Vulnerability advisories in products, applications, or websites. These disclosures should be directed toward Bugtraq, Full-Disclosure, VulnWatch, Secunia, or the website owners. Is the list moderated? Yes. Who is the moderator(s)? The list moderator(s) are responsible for applying the charter fairly and equally to all received posts. As such the moderators maintain full discretion over deciding what is appropriate content for the list. Please communicate with Robert Auger regarding any complains or disputes for resolution. Robert Auger (Lead Moderator) Jeremiah Grossman Do you verify the information on list? No, information within list posts are not verified. The Web Security Mailing List moderation process is used to apply the charter and keep the list discussion on topic. The moderators or WASC does not verify, endorse, validate, or recommend any solutions, patches, tools, products, information, solutions, vulnerabilities, or exploits posted by third parties to the list. While moderators make every effort to remove malware from list traffic, WASC or the moderators cannot be held responsible or liable for any damage caused by a post. Is there a web archive available online? Yes. View the archives List Management How do I subscribe? Send an e-mail to websecurity-subscribe@webappsec.org. You will receive a confirmation email to approve your subscription request. How do I unsubscribe? Send an e-mail to websecurity-unsubscribe@webappsec.org. You will receive a confirmation email to approve your unsubscribe request. If your email address has changed and you no longer have access to the account, send email listadmin@webappsec.org for the account to be removed manually. How do I disable mail delivery temporarily? Unsubscribe from the mailing list and then re-subscribe when your ready to receive list traffic. Is the list available in a digest format? Not at this time. Are message tags added to the subject line of each email? Yes. [WEB SECURITY] is prepended to the subject line of each email message. Search this site Home :: About Us :: Projects :: Mailing Lists :: Library :: News :: Links :: Contact Us © Copyright 2005, Web Application Security Consortium. All rights reserved.