On Wed, Jul 20, 2011 at 09:37:18AM +0800, C0r3 Machin3gun wrote: > On 20 July 2011 07:55, David Fetter <[email protected]> wrote: > > I'm dismayed that people require this very basic kind of advice on > > using defense in depth to protect assets. I would have hoped that it > > was too obvious even to bother repeating, and I am saddened to be > > wrong. > > So where is your advance contribution? Mind to share?
I suppose that OWASP will be helping to create a guide. One name I've thought of is, "The n00b's guide to access control." One of the very first things in the n00b guide will be the careful differentiation of "access control" from "security." I could start writing one in English, although English might not be the most useful language to write it in for this list. First off, is "n00b" a recognized word in Bahasa Malaysia? Cheers, David. -- David Fetter <[email protected]> http://fetter.org/ Phone: +1 415 235 3778 AIM: dfetter666 Yahoo!: dfetter Skype: davidfetter XMPP: [email protected] iCal: webcal://www.tripit.com/feed/ical/people/david74/tripit.ics Remember to vote! Consider donating to Postgres: http://www.postgresql.org/about/donate _______________________________________________ OWASP-Malaysia mailing list [email protected] https://lists.owasp.org/mailman/listinfo/owasp-malaysia OWASP Malaysia Wiki http://www.owasp.my OWASP Malaysia Facebook http://www.facebook.com/OWASP.Malaysia OWASP Malaysia Twitter #owaspmy http://www.twitter.com/owaspmy
