Hi Everyone,
I'd like to invite anyone interested to join in on a secure coding documentation sprint on Friday of this week (Dec 21st), from 11:30am - 12:30pm PST (19:30-20:30 UTC). If you're interested in joining, but can't make that specific time, let me know and we may hold more of these if there's interest.
The goal of this sprint is to both help anyone who is interested learn about some specific security vulnerabilities, and update our documentation so that new developers can avoid these issues in the future.
On Friday, I would like to address a couple of topics where we have very little documentation: * DOM-based XSS, and writing secure client side code. Closely related is general security for gadget developers. * Protecting private information (i.e., when do developers need to check if data has been deleted / suppressed)
We'll spend a little time talking about each subject (and some specific issues we've seen recently), and I'll have a rough article outline in an etherpad. Then I would like everyone's help fleshing out the documents so they are clear and informative for other developers of all skill levels.
I'll have both a google hangout for video, and an audio line for anyone who prefers to avoid closed technology. If you want to dial in, please let me know so I can get you a phone number in advance.
Chris
On 12/19/2012 10:11 PM, Chris Steipp wrote:
I'll have both a google hangout for video, and an audio line for anyone who prefers to avoid closed technology. If you want to dial in, please let me know so I can get you a phone number in advance.
I'd like to join this.
Thanks,
Matt Flaschen
This is great Chris. Airport wifi permitted, I will gladly tune in.
On Wed, Dec 19, 2012 at 7:11 PM, Chris Steipp csteipp@wikimedia.org wrote:
Hi Everyone,
I'd like to invite anyone interested to join in on a secure coding documentation sprint on Friday of this week (Dec 21st), from 11:30am - 12:30pm PST (19:30-20:30 UTC). If you're interested in joining, but can't make that specific time, let me know and we may hold more of these if there's interest.
The goal of this sprint is to both help anyone who is interested learn about some specific security vulnerabilities, and update our documentation so that new developers can avoid these issues in the future.
On Friday, I would like to address a couple of topics where we have very little documentation:
- DOM-based XSS, and writing secure client side code. Closely related
is general security for gadget developers.
- Protecting private information (i.e., when do developers need to
check if data has been deleted / suppressed)
We'll spend a little time talking about each subject (and some specific issues we've seen recently), and I'll have a rough article outline in an etherpad. Then I would like everyone's help fleshing out the documents so they are clear and informative for other developers of all skill levels.
I'll have both a google hangout for video, and an audio line for anyone who prefers to avoid closed technology. If you want to dial in, please let me know so I can get you a phone number in advance.
Chris
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
I might join in. I'm guessing the Hangout link will be sent via the mailing list?
*--* *Tyler Romeo* Stevens Institute of Technology, Class of 2015 Major in Computer Science www.whizkidztech.com | tylerromeo@gmail.com
On Thu, Dec 20, 2012 at 5:41 PM, Rob Moen rmoen@wikimedia.org wrote:
This is great Chris. Airport wifi permitted, I will gladly tune in.
On Wed, Dec 19, 2012 at 7:11 PM, Chris Steipp csteipp@wikimedia.org wrote:
Hi Everyone,
I'd like to invite anyone interested to join in on a secure coding documentation sprint on Friday of this week (Dec 21st), from 11:30am - 12:30pm PST (19:30-20:30 UTC). If you're interested in joining, but can't make that specific time, let me know and we may hold more of these if there's interest.
The goal of this sprint is to both help anyone who is interested learn about some specific security vulnerabilities, and update our documentation so that new developers can avoid these issues in the future.
On Friday, I would like to address a couple of topics where we have very little documentation:
- DOM-based XSS, and writing secure client side code. Closely related
is general security for gadget developers.
- Protecting private information (i.e., when do developers need to
check if data has been deleted / suppressed)
We'll spend a little time talking about each subject (and some specific issues we've seen recently), and I'll have a rough article outline in an etherpad. Then I would like everyone's help fleshing out the documents so they are clear and informative for other developers of all skill levels.
I'll have both a google hangout for video, and an audio line for anyone who prefers to avoid closed technology. If you want to dial in, please let me know so I can get you a phone number in advance.
Chris
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
-- Rob Moen Wikimedia Foundation rmoen@wikimedia.org _______________________________________________ Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
Yep, I'll send out a link about 30 minutes before we start, and post it on irc too. Hope you can join in! On Dec 20, 2012 8:13 PM, "Tyler Romeo" tylerromeo@gmail.com wrote:
I might join in. I'm guessing the Hangout link will be sent via the mailing list?
*--* *Tyler Romeo* Stevens Institute of Technology, Class of 2015 Major in Computer Science www.whizkidztech.com | tylerromeo@gmail.com
On Thu, Dec 20, 2012 at 5:41 PM, Rob Moen rmoen@wikimedia.org wrote:
This is great Chris. Airport wifi permitted, I will gladly tune in.
On Wed, Dec 19, 2012 at 7:11 PM, Chris Steipp csteipp@wikimedia.org wrote:
Hi Everyone,
I'd like to invite anyone interested to join in on a secure coding documentation sprint on Friday of this week (Dec 21st), from 11:30am - 12:30pm PST (19:30-20:30 UTC). If you're interested in joining, but can't make that specific time, let me know and we may hold more of these if there's interest.
The goal of this sprint is to both help anyone who is interested learn about some specific security vulnerabilities, and update our documentation so that new developers can avoid these issues in the future.
On Friday, I would like to address a couple of topics where we have very little documentation:
- DOM-based XSS, and writing secure client side code. Closely related
is general security for gadget developers.
- Protecting private information (i.e., when do developers need to
check if data has been deleted / suppressed)
We'll spend a little time talking about each subject (and some specific issues we've seen recently), and I'll have a rough article outline in an etherpad. Then I would like everyone's help fleshing out the documents so they are clear and informative for other developers of all skill levels.
I'll have both a google hangout for video, and an audio line for anyone who prefers to avoid closed technology. If you want to dial in, please let me know so I can get you a phone number in advance.
Chris
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
-- Rob Moen Wikimedia Foundation rmoen@wikimedia.org _______________________________________________ Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
It's 19:23 now so this starts in under 10 minutes. Can I have the link please?
Alex
On 21/12/12 15:53, Chris Steipp wrote:
Yep, I'll send out a link about 30 minutes before we start, and post it on irc too. Hope you can join in! On Dec 20, 2012 8:13 PM, "Tyler Romeo" tylerromeo@gmail.com wrote:
I might join in. I'm guessing the Hangout link will be sent via the mailing list?
*--* *Tyler Romeo* Stevens Institute of Technology, Class of 2015 Major in Computer Science www.whizkidztech.com | tylerromeo@gmail.com
On Thu, Dec 20, 2012 at 5:41 PM, Rob Moen rmoen@wikimedia.org wrote:
This is great Chris. Airport wifi permitted, I will gladly tune in.
On Wed, Dec 19, 2012 at 7:11 PM, Chris Steipp csteipp@wikimedia.org wrote:
Hi Everyone,
I'd like to invite anyone interested to join in on a secure coding documentation sprint on Friday of this week (Dec 21st), from 11:30am - 12:30pm PST (19:30-20:30 UTC). If you're interested in joining, but can't make that specific time, let me know and we may hold more of these if there's interest.
The goal of this sprint is to both help anyone who is interested learn about some specific security vulnerabilities, and update our documentation so that new developers can avoid these issues in the future.
On Friday, I would like to address a couple of topics where we have very little documentation:
- DOM-based XSS, and writing secure client side code. Closely related
is general security for gadget developers.
- Protecting private information (i.e., when do developers need to
check if data has been deleted / suppressed)
We'll spend a little time talking about each subject (and some specific issues we've seen recently), and I'll have a rough article outline in an etherpad. Then I would like everyone's help fleshing out the documents so they are clear and informative for other developers of all skill levels.
I'll have both a google hangout for video, and an audio line for anyone who prefers to avoid closed technology. If you want to dial in, please let me know so I can get you a phone number in advance.
Chris
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
-- Rob Moen Wikimedia Foundation rmoen@wikimedia.org _______________________________________________ Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
Hey all, I'm having some AV issues... I'll send out the link once I can get a working microphone. We may start up a couple minutes late. Sorry about that!
On Fri, Dec 21, 2012 at 11:24 AM, Krenair krenair@gmail.com wrote:
It's 19:23 now so this starts in under 10 minutes. Can I have the link please?
Alex
On 21/12/12 15:53, Chris Steipp wrote:
Yep, I'll send out a link about 30 minutes before we start, and post it on irc too. Hope you can join in! On Dec 20, 2012 8:13 PM, "Tyler Romeo" tylerromeo@gmail.com wrote:
I might join in. I'm guessing the Hangout link will be sent via the mailing list?
*--* *Tyler Romeo* Stevens Institute of Technology, Class of 2015 Major in Computer Science www.whizkidztech.com | tylerromeo@gmail.com
On Thu, Dec 20, 2012 at 5:41 PM, Rob Moen rmoen@wikimedia.org wrote:
This is great Chris. Airport wifi permitted, I will gladly tune in.
On Wed, Dec 19, 2012 at 7:11 PM, Chris Steipp csteipp@wikimedia.org wrote:
Hi Everyone,
I'd like to invite anyone interested to join in on a secure coding documentation sprint on Friday of this week (Dec 21st), from 11:30am - 12:30pm PST (19:30-20:30 UTC). If you're interested in joining, but can't make that specific time, let me know and we may hold more of these if there's interest.
The goal of this sprint is to both help anyone who is interested learn about some specific security vulnerabilities, and update our documentation so that new developers can avoid these issues in the future.
On Friday, I would like to address a couple of topics where we have very little documentation:
- DOM-based XSS, and writing secure client side code. Closely related
is general security for gadget developers.
- Protecting private information (i.e., when do developers need to
check if data has been deleted / suppressed)
We'll spend a little time talking about each subject (and some specific issues we've seen recently), and I'll have a rough article outline in an etherpad. Then I would like everyone's help fleshing out the documents so they are clear and informative for other developers of all skill levels.
I'll have both a google hangout for video, and an audio line for anyone who prefers to avoid closed technology. If you want to dial in, please let me know so I can get you a phone number in advance.
Chris
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
-- Rob Moen Wikimedia Foundation rmoen@wikimedia.org _______________________________________________ Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
Sorry for the delay, this link should work!
https://plus.google.com/hangouts/_/8e5a52bc254a36c4c78b2a999110fb10a2a3f32c
On Fri, Dec 21, 2012 at 11:27 AM, Chris Steipp csteipp@wikimedia.org wrote:
Hey all, I'm having some AV issues... I'll send out the link once I can get a working microphone. We may start up a couple minutes late. Sorry about that!
On Fri, Dec 21, 2012 at 11:24 AM, Krenair krenair@gmail.com wrote:
It's 19:23 now so this starts in under 10 minutes. Can I have the link please?
Alex
On 21/12/12 15:53, Chris Steipp wrote:
Yep, I'll send out a link about 30 minutes before we start, and post it on irc too. Hope you can join in! On Dec 20, 2012 8:13 PM, "Tyler Romeo" tylerromeo@gmail.com wrote:
I might join in. I'm guessing the Hangout link will be sent via the mailing list?
*--* *Tyler Romeo* Stevens Institute of Technology, Class of 2015 Major in Computer Science www.whizkidztech.com | tylerromeo@gmail.com
On Thu, Dec 20, 2012 at 5:41 PM, Rob Moen rmoen@wikimedia.org wrote:
This is great Chris. Airport wifi permitted, I will gladly tune in.
On Wed, Dec 19, 2012 at 7:11 PM, Chris Steipp csteipp@wikimedia.org wrote:
Hi Everyone,
I'd like to invite anyone interested to join in on a secure coding documentation sprint on Friday of this week (Dec 21st), from 11:30am - 12:30pm PST (19:30-20:30 UTC). If you're interested in joining, but can't make that specific time, let me know and we may hold more of these if there's interest.
The goal of this sprint is to both help anyone who is interested learn about some specific security vulnerabilities, and update our documentation so that new developers can avoid these issues in the future.
On Friday, I would like to address a couple of topics where we have very little documentation:
- DOM-based XSS, and writing secure client side code. Closely related
is general security for gadget developers.
- Protecting private information (i.e., when do developers need to
check if data has been deleted / suppressed)
We'll spend a little time talking about each subject (and some specific issues we've seen recently), and I'll have a rough article outline in an etherpad. Then I would like everyone's help fleshing out the documents so they are clear and informative for other developers of all skill levels.
I'll have both a google hangout for video, and an audio line for anyone who prefers to avoid closed technology. If you want to dial in, please let me know so I can get you a phone number in advance.
Chris
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
-- Rob Moen Wikimedia Foundation rmoen@wikimedia.org _______________________________________________ Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
On 12/21/2012 02:43 PM, Chris Steipp wrote:
Sorry for the delay, this link should work!
https://plus.google.com/hangouts/_/8e5a52bc254a36c4c78b2a999110fb10a2a3f32c
I started an Etherpad for notes.
http://etherpad.wmflabs.org/pad/p/secure_documentation
Matt Flaschen
On 12/21/2012 02:55 PM, Matthew Flaschen wrote:
On 12/21/2012 02:43 PM, Chris Steipp wrote:
Sorry for the delay, this link should work!
https://plus.google.com/hangouts/_/8e5a52bc254a36c4c78b2a999110fb10a2a3f32c
I started an Etherpad for notes.
http://etherpad.wmflabs.org/pad/p/secure_documentation
Matt Flaschen
I see the group worked on some documentation on DOM-based XSS prevention at http://etherpad.wmflabs.org/pad/p/SecureDocumentation -- Chris, is that prose being transferred to a relevant page on mediawiki.org?
Thanks for leading the session!
Yep, I'm prosifying it, and will be adding pages on mediawiki for them soon! On Dec 24, 2012 8:47 PM, "Sumana Harihareswara" sumanah@wikimedia.org wrote:
On 12/21/2012 02:55 PM, Matthew Flaschen wrote:
On 12/21/2012 02:43 PM, Chris Steipp wrote:
Sorry for the delay, this link should work!
https://plus.google.com/hangouts/_/8e5a52bc254a36c4c78b2a999110fb10a2a3f32c
I started an Etherpad for notes.
http://etherpad.wmflabs.org/pad/p/secure_documentation
Matt Flaschen
I see the group worked on some documentation on DOM-based XSS prevention at http://etherpad.wmflabs.org/pad/p/SecureDocumentation -- Chris, is that prose being transferred to a relevant page on mediawiki.org?
Thanks for leading the session!
-- Sumana Harihareswara Engineering Community Manager Wikimedia Foundation
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
wikitech-l@lists.wikimedia.org