itable in
some other way.
Cheers
Ken
From: Webster [mailto:webs...@carlwebster.com]
Sent: Friday, 14 September 2012 12:46 AM
To: NT System Admin Issues
Subject: Re: IIS 7.5 and OWASP
Thanks Z, appreciate the info.
Carl Webster
Consultant and Citrix Technology Professional
http://www.CarlW
ganization
ezi...@lifespan.org
From: Tigran K [mailto:tigr...@gmail.com]
Sent: Thursday, September 13, 2012 2:53 PM
To: NT System Admin Issues
Subject: Re: IIS 7.5 and OWASP
Edward summed it up really well. Just wanted to add that some of the
OWASP top 10 items can not be protected against
hub.com/ironbee/waf-research
>
> ** **
>
> HTH, if you need more information hit me offline. ****
>
> EZ
>
> ** **
>
> Edward E. Ziots, CISSP, Security +, Network +
>
> Security Engineer
>
> Lifespan Organization
>
> ezi...@lifespan.org*
Glad to assist,
Z
Edward E. Ziots, CISSP, Security +, Network +
Security Engineer
Lifespan Organization
ezi...@lifespan.org
From: Webster [mailto:webs...@carlwebster.com]
Sent: Thursday, September 13, 2012 10:46 AM
To: NT System Admin Issues
Subject: Re: IIS 7.5 and OWASP
tovall mailto:rich...@gmail.com>>
Subject: Re: IIS 7.5 and OWASP
I think the OWASP Top 10 is a framework for the web application development
process and lifecycle rather than a set of guidelines for the web server
itself. If you're trying to demonstrate that an out of the box Citrix pr
I think the OWASP Top 10 is a framework for the web application development
process and lifecycle rather than a set of guidelines for the web server
itself. If you're trying to demonstrate that an out of the box Citrix
product adheres to the framework, then I'd imagine you have to get a
statement
