Q1 2007 Application Security Trends Report (Corrected Link)
- To: webappsec@xxxxxxxxxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx
- Subject: Q1 2007 Application Security Trends Report (Corrected Link)
- From: "Tom Stracener" <strace@xxxxxxxxx>
- Date: Wed, 23 May 2007 08:41:18 -0500
- Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=sN/5eEqEb/YygkKtk1a5zhpEDVJ8uxsKtUGQxfxoK5Umk2WVW2nEnWVpUJoIZhvYSALQkwNEJf/j0k4x2ofuHcSsKU+eVxoqguduPb5HKO0+VnG9pE2Wrgg1vJeWfByYpzFXV5NAuZDvOltcIoHInno5KxMRgnZRIQVprKuyVDA=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=B2+39YePRcvqtS2rKFpXtZohjYKfVAIMU0/BRuG3qA3dikM46yWG2MjQlSrkmy0xsAzbla9+VB1eZcy18AyYKo5VZBC0IWxxuhE/kAd81UdVXIHpEXt2NVqwMgdQjgucqGOrcl5jJP3CX/xfJxOyOAJcuTN7qQi1HSILRKhZyIQ=
- List-help: <mailto:bugtraq-help@securityfocus.com>
- List-id: <bugtraq.list-id.securityfocus.com>
- List-post: <mailto:bugtraq@securityfocus.com>
- List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
- List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
- Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
All,
First, I want to thank you for bringing the broken link to my
attention. Essentially we had a race condition and someone changed the
name of the file after I had made my post.
I have been informed that the best thing to do is to download the
report directly from the Cenzic homepage:
http://www.cenzic.com.
We will have a link to the file prominently displayed. You can find it
on the right hand side of the page. I have put a direct link to the
Cenzic homepage from my blog post about the Trend report, at:
http://secureweb.typepad.com/secure_web/2007/05/q1_2007_applica.html
For those of you that want to try your hand at a direct link, here is
one with the new filename:
http://www.cenzic.com/pdfs/Cenzic_AppSecTrends_Q1-07.pdf
Be aware, I can't guarantee that a busy little bee won't change the
filename again, so if that direct link doesn't work by the time you
read this then you can get the latest version off of our homepage
(above).
Shoutz out to the cReW of the ISTR! :-) Your hard work is appreciated.
Thanks,
-Tom
Tom Stracener
Sr. Security Analyst
Cenzic Inc.