Re: [Mod-security-developers] ModSecurity(-dev) community meeting
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [Mod-security-developers] ModSecurity(-dev) community meeting
|
From: Felipe C. <FC...@tr...> - 2015-09-29 18:15:46
|
Hi Guys, Here goes the Doodle link: http://doodle.com/poll/trgndmt946qyheid Christian: I am afraid that the agenda will be too big. What about two different meetings: One for ModSecurity core and another one for the OWASP rules. There are a lot of new stuff about ModSecurity v3 :) Adding Sanders in the loop... Br, Felipe “Zimmerle” Costa Security Researcher, SpiderLabs Trustwave | SMART SECURITY ON DEMAND www.trustwave.com <http://www.trustwave.com/> On 9/28/15, 12:32 AM, "Christian Folini" <chr...@ti...> wrote: >Hello, > >The agenda sounds good with me. > >Am I right, the core rules are out of scope for this >dev meeting? Keeping them out makes a lot of sense. >But then the core rules are the thing that make >ModSec useful for most people and the core rules >would benefit from coverage in such a meeting a >lot. As a separate meeting is not feasible, I ask >you to consider their inclusion. > >Oct 15, 20:00 UTC does not really work for me. > >How about a doodle? >http://scanmail.trustwave.com/?c=4062&d=2bSI1jUdGz4klozny2jghgMn0VCy-sNY0k >mGVNzJ-Q&s=5&u=http%3a%2f%2fdoodle%2ecom%2f > >Ahoj, > >Christian > > > > >On Tue, Sep 22, 2015 at 02:49:11PM +0000, Felipe Costa wrote: >> Hi, >> >> My suggestion for an agenda is to go over the open pull requests and >> issues to classify >> the most important ones considering the community point of view. >> >> One specific point I think we should discuss is the format for the JSON >> audit logging, >> for that you would like to invite the authors of AuditConsole, WAF-FLE >>and >> Robert. >> Robert >>(http://scanmail.trustwave.com/?c=4062&d=2bSI1jUdGz4klozny2jghgMn0VCy-sNY >>0kuDB4ia9g&s=5&u=https%3a%2f%2fgithub%2ecom%2fp0pr0ck5) recently sent as >>a patch to make >> ModSecurity 2.9 >> able to save logs in JSON, in libmodsecurity we have a different format. >> >> I also would like to explain a little bit about libModSecurity and how >>it >> can get it >> working on Apache. >> >> - >>http://scanmail.trustwave.com/?c=4062&d=2bSI1jUdGz4klozny2jghgMn0VCy-sNY0 >>hiDVdOd9w&s=5&u=https%3a%2f%2fgithub%2ecom%2fSpiderLabs%2fModSecurity%2ft >>ree%2flibmodsecurity >> >> >> Is there anything that you think we can add to the agenda? >> >> October 15, sounds a good date? 20:00 UTC is good for everyone? >> >> Br, >> Felipe ³Zimmerle² Costa >> Security Researcher, SpiderLabs >> >> Trustwave | SMART SECURITY ON DEMAND >> www.trustwave.com <http://www.trustwave.com/> >> >> >> >> >> >> From: Kurt Seifried <kse...@re...> >> Date: Monday, September 21, 2015 at 1:28 PM >> To: "mar...@ap..." <mar...@ap...>, >> "mod...@li..." >> <mod...@li...> >> Cc: Felipe Costa <fc...@tr...>, Ryan Barnett >> <rya...@ow...> >> Subject: Re: [Mod-security-developers] ModSecurity(-dev) community >>meeting >> >> >> >> >> On Mon, Sep 21, 2015 at 5:34 AM, Marc Stern >> <mar...@ap...> wrote: >> >> Very good idea. >> Skype is also an option, no? Voice, screen sharing, ... >> >> >> >> >> >> Does not scale well, difficult to get a proper transcript (reading is >> always faster then listening to audio/video, plus it is searchable). For >> 1:1 or a handful of people sure, but not for larger meetings. >> >> >> >> Marc Stern >> Senior Information Security Consultant - Head of Security Consulting >> Approach Belgium - >> >>http://scanmail.trustwave.com/?c=4062&d=2bSI1jUdGz4klozny2jghgMn0VCy-sNY0 >>hmMBoucoA&s=5&u=http%3a%2f%2fwww%2eapproach%2ebe >> >><http://scanmail.trustwave.com/?c=4062&d=mLCA1vH6Qk9TDnIbSGsfFdbbfQ6_Rjz_ >>Ye >> 4fWqXhbg&s=5&u=http%3a%2f%2fwww%2eapproach%2ebe> >> Axis Park - Rue Edouard Belin 7 - 1435 Louvain-la-Neuve >> (Mont-Saint-Guibert) - Belgium >> LinkedIn >> >><http://scanmail.trustwave.com/?c=4062&d=mLCA1vH6Qk9TDnIbSGsfFdbbfQ6_Rjz_ >>Yb >> 5HWfPgOQ&s=5&u=http%3a%2f%2fwww%2elinkedin%2ecom%2fin%2fmarcstern> >> ________________________________________ >> This e-mail and any attachment are confidential and intended solely for >> the use of the individual to whom it is addressed. If you are not the >> intended recipient, please contact the sender and delete >> this message and any attachment from your system. Unauthorised >> publication, use, dissemination, forwarding, printing or copying of this >> e-mail and its associated attachments is strictly prohibited. >> >> >> >> >> >> Date: Fri, 18 Sep 2015 14:17:28 +0000 >> From: Felipe Costa <FC...@tr...> <mailto:FC...@tr...> >> Subject: [Mod-security-developers] ModSecurity(-dev) community meeting >> To: "mod...@li..." >> <mailto:mod...@li...> >> <mod...@li...> >> <mailto:mod...@li...> >> Cc: Ryan Barnett <rya...@ow...> >><mailto:rya...@ow...> >> Message-ID: <D221A346.1478D%fc...@tr...> >> <mailto:D221A346.1478D%fc...@tr...> >> >> Hi Guys, >> >> I would like to know if you are interested to participate in a monthly >> meeting >> about the status of ModSecurity Open Source project (Issues, Pending >>merge >> requests, >> new features and etc?). >> >> Could be in the same format used in other open source projects, such as >> AppArmor: >> >>http://scanmail.trustwave.com/?c=4062&d=2bSI1jUdGz4klozny2jghgMn0VCy-sNY0 >>h7UB4nL9g&s=5&u=http%3a%2f%2fwiki%2eapparmor%2enet%2findex%2ephp%2fMeetin >>gAgenda >> >><http://scanmail.trustwave.com/?c=4062&d=mLCA1vH6Qk9TDnIbSGsfFdbbfQ6_Rjz_ >>Ye >> >>lHW6e2OA&s=5&u=http%3a%2f%2fwiki%2eapparmor%2enet%2findex%2ephp%2fMeeting >>Ag >> enda> >> >> >> We can use IRC or Hangout. >> >> Thanks, >> Felipe ?Zimmerle? Costa >> Security Researcher, SpiderLabs >> >> >> >> >> >>------------------------------------------------------------------------- >>-- >> --- >> >> _______________________________________________ >> mod-security-developers mailing list >> mod...@li... >> >>http://scanmail.trustwave.com/?c=4062&d=2bSI1jUdGz4klozny2jghgMn0VCy-sNY0 >>kqGCd7IpA&s=5&u=https%3a%2f%2flists%2esourceforge%2enet%2flists%2flistinf >>o%2fmod-security-developers >> >><http://scanmail.trustwave.com/?c=4062&d=mLCA1vH6Qk9TDnIbSGsfFdbbfQ6_Rjz_ >>Yb >> >>0VVfC1ag&s=5&u=https%3a%2f%2flists%2esourceforge%2enet%2flists%2flistinfo >>%2 >> fmod-security-developers> >> ModSecurity Services from Trustwave's SpiderLabs: >> https://www.trustwave.com/spiderLabs.php >> >> >> >> >> >> >> -- >> >> -- >> Kurt Seifried -- Red Hat -- Product Security -- Cloud >> PGP A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993 >> Red Hat Product Security contact: sec...@re... >> >> >> ________________________________ >> >> This transmission may contain information that is privileged, >>confidential, and/or exempt from disclosure under applicable law. If you >>are not the intended recipient, you are hereby notified that any >>disclosure, copying, distribution, or use of the information contained >>herein (including any reliance thereon) is strictly prohibited. If you >>received this transmission in error, please immediately contact the >>sender and destroy the material in its entirety, whether in electronic >>or hard copy format. >> >> >>------------------------------------------------------------------------- >>----- >> _______________________________________________ >> mod-security-developers mailing list >> mod...@li... >> >>http://scanmail.trustwave.com/?c=4062&d=2bSI1jUdGz4klozny2jghgMn0VCy-sNY0 >>kqGCd7IpA&s=5&u=https%3a%2f%2flists%2esourceforge%2enet%2flists%2flistinf >>o%2fmod-security-developers >> ModSecurity Services from Trustwave's SpiderLabs: >> https://www.trustwave.com/spiderLabs.php > >-------------------------------------------------------------------------- >---- >_______________________________________________ >mod-security-developers mailing list >mod...@li... >http://scanmail.trustwave.com/?c=4062&d=2bSI1jUdGz4klozny2jghgMn0VCy-sNY0k >qGCd7IpA&s=5&u=https%3a%2f%2flists%2esourceforge%2enet%2flists%2flistinfo% >2fmod-security-developers >ModSecurity Services from Trustwave's SpiderLabs: >https://www.trustwave.com/spiderLabs.php ________________________________ This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. |
