SoftwareSecurity2014/Group 11/Log

Uit Werkplaats
Ga naar: navigatie, zoeken

Log

All our efforts are logged here. If there is no explicit listing on the member present then all members where present.

11-03-2014 @ 16:30

Skype meeting with all members about what to do and getting the tool running

  • Mark will email Erik with the question how to incorporate assignment part one with the Level 1B and the code
  • Kevin will split the Fortify issues into four parts and assign each part to a member. All members will describe the categories why they do met our V4, V9 or why not (directly).

18-03-2014 @ 10:00

Skype meeting where we tried to get the Fortify environment working for Marta en Tomas and decided how to continue.

  • There are four tasks for analysing Wordpress on the ASVS requirements:
    • How does Access Control work in Wordpress? (Mark)
    • How is Access Control implemented in Wordpress? (Marta)
    • How does Data Protection work for Wordpress? (Kevin)
    • How is Data Protected implemented in Wordpress? (Tomas)

21-03-2014 @ 11:00

Kevin helping Tomas to get the Fortify environment running. This succeeded after some troubleshooting!

04-04-2014 @ 14:00

Kevin working on structuring our wiki pages and writing the report.

  • Wrote comparison of scanners
  • Wrote scanner results

RATS building and running

Kevin did a RATS build with cygwin and extra installing of package libexpat

./configure --prefix="./bin"
make
make install

(Erik: And that was all for April, May...?)