[OPEN-ILS-DEV] Security inspection
Lazar, Alexey Vladimirovich
alexey.lazar at mnsu.edu
Mon Oct 22 12:48:22 EDT 2012
Well, could the OWASP Top 10 be of some use: https://www.owasp.org/index.php/Top_10_2010-Main? OWASP mainly focuses on web applications. Similarly, http://www.sans.org/top25-software-errors/.
On Oct 22, 2012, at 10:11 , Kivilahti Olli-Antti wrote:
> Another issue is with the security review we already have funding for.
> As I don't have lots of knowledge about what areas of Evergreen should
> be taken a look into (external interfaces), would the community in
> general be interested in helping me direct the efforts of our 3rd party
> security experts, to key vulnerabilities. Currently I haven't really
> dabbled with any EG external services, like SIP so I am largely clueless.
>
> Olli-Antti Kivilahti
> Open Library 2013
> Library of Joensuu
Alexey Lazar
PALS
Information System Developer and Integrator
507-389-2907
http://www.mnpals.org/
More information about the Open-ils-dev
mailing list