Hi David, That's the idea subscribing to this mail list in the first place - to keep abreast or to remind on what-has-long-been-forgotten security or access control best practices.
If you care to share - please elaborate on the 'n00b' jargon - I must admit I'm not familiar with it but would very much like to know and learn more... It may not benefit me directly to my daily job spec but it would definitely enrich the knowledge and useful for on-going research. I can assure you that universal English will be just fine for this list to understand....... Cheers, Miss Laiha -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of David Fetter Sent: Wednesday, July 20, 2011 11:34 AM To: [email protected] Subject: Re: [OWASP-Malaysia] ADVICE : Make Sure PhpMyAdmin or PGAdmin Or any Admin Interface Secure On Wed, Jul 20, 2011 at 09:37:18AM +0800, C0r3 Machin3gun wrote: > On 20 July 2011 07:55, David Fetter <[email protected]> wrote: > > I'm dismayed that people require this very basic kind of advice on > > using defense in depth to protect assets. I would have hoped that it > > was too obvious even to bother repeating, and I am saddened to be > > wrong. > > So where is your advance contribution? Mind to share? I suppose that OWASP will be helping to create a guide. One name I've thought of is, "The n00b's guide to access control." One of the very first things in the n00b guide will be the careful differentiation of "access control" from "security." I could start writing one in English, although English might not be the most useful language to write it in for this list. First off, is "n00b" a recognized word in Bahasa Malaysia? Cheers, David. -- David Fetter <[email protected]> http://fetter.org/ Phone: +1 415 235 3778 AIM: dfetter666 Yahoo!: dfetter Skype: davidfetter XMPP: [email protected] iCal: webcal://www.tripit.com/feed/ical/people/david74/tripit.ics Remember to vote! Consider donating to Postgres: http://www.postgresql.org/about/donate _______________________________________________ OWASP-Malaysia mailing list [email protected] https://lists.owasp.org/mailman/listinfo/owasp-malaysia OWASP Malaysia Wiki http://www.owasp.my OWASP Malaysia Facebook http://www.facebook.com/OWASP.Malaysia OWASP Malaysia Twitter #owaspmy http://www.twitter.com/owaspmy _______________________________________________ OWASP-Malaysia mailing list [email protected] https://lists.owasp.org/mailman/listinfo/owasp-malaysia OWASP Malaysia Wiki http://www.owasp.my OWASP Malaysia Facebook http://www.facebook.com/OWASP.Malaysia OWASP Malaysia Twitter #owaspmy http://www.twitter.com/owaspmy
