Secure Coding mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Announcement: The Web Application Firewall Evaluation Criteria v1

From: Gunnar Peterson <gunnar () arctecgroup net>
Date: Tue, 11 Oct 2005 13:28:10 +0100
That page is a link to the doc types

html:
http://www.webappsec.org/projects/waf_evaluation/v1/wafec-draft-1-20051007.html

txt
http://www.webappsec.org/projects/waf_evaluation/v1/wafec-draft-1-20051007.txt

pdf
http://www.webappsec.org/projects/waf_evaluation/v1/wafec-draft-1-20051007.pdf

-gp

Quoting ljknews <[EMAIL PROTECTED]>:


At 11:39 PM -0400 10/9/05, [EMAIL PROTECTED] wrote:

The Web Application Firewall Evaluation Criteria project is proud
to announce its first public release.

The goal of the project is to develop a detailed web application
firewall evaluation criteria; a testing methodology that can be
used by any reasonably skilled technician to independently assess
quality of a web application firewall.

The primary purpose of this release is to solicit comments from the
public. You can download the current version of the evaluation
criteria from the project home page:

  http://www.webappsec.org/projects/waf_evaluation/


Hmmm.  That page shows me a blank page with a lovely logo and toolbar
at the top.  Other pages on that site do not have that problem.

Then again, http://validator.w3.org says that page has 167 errors on it.

I would say that conforming to standards should be the first step,
especially when an automatic checker is available.
--
Larry Kilgallen
Previous By Date Next
Previous By Thread Next

Current thread: