Community mailing list archives
Re: Community - Odoo security - 79% funded and 22 hours to go!by
I could imagine the link to the campaign would be helpful for getting more funders to participate
Gunnar Wagner | Iris Germanica Ltd. | JinQian Gong Lu 385, 8-201 | FengXian Qu, 201404 Shanghai | P.R. CHINA | +86 159 0094 1702 | +49 (0)176 7808 9090 | skype: professorgunrad | www.fashionsupermarket.net
On 2015-07-31 18:02, Melissa Ames wrote:
credativ are supporting this security audit!
Our developers have extensive experience with Odoo and we understand the importance of ensuring users have full trust in the software.
One of our consultants has a significant history with the development of Odoo and completed research on its security features over recent years. He has experience testing and planning security systems for numerous clients and full software infrastructures. This, coupled with comprehensive knowledge of Odoo across many versions, he has the understanding to technically contribute to this campaign.
He will be providing guidance for the whole audit process and identifying the high priority issues that need to be focussed on. He will also be reporting and documenting the issues back to Odoo from the audit and reviewing the proposed fixes.
However, in order for this happen, the crowd fund needs to reach its target, therefore we have also financially contributed.
We understand the benefits this audit will bring to Odoo and its users, therefore we would like to encourage the other partners to show their support and contribute however they can.
Today is the day! Now is the time to show our support as a community!
On 31/07/15 10:20, Stuart J Mackintosh wrote:<blockquote cite="mid:55BB3C72.email@example.com" type="cite">
Thank you all for your feedback and supportive comments, the project is now 79% funded by 34 contributors and has 22 hours to go!
Although views have been shared that an ERP and a web site should not be connected, the reality is that there are now many users (Odoo say 2 million) who are using an Odoo with the capability to install the website module at the click of a button (if not already enabled), so right or wrong, the issue is here today, and not knowing the risk is a dangerous position.
For this reason, if you use Odoo, you need to support an Odoo security audit.
@Gunnar - Thanks for the post and the linked-in
@Carlos - Thanks for the contribution - There should be concern, will users wait until there is an issue and only then wonder why no-one did anything?
@Dave - It does cost over £10k for an external audit (just the direct cost, the indirect cost could be much more). I am able to run this cost-effectively as I have an experienced team, we have Odoo platforms running and are experience being on the receiving end of an audit. Any contribution is welcome!
@Fabien @Dave @Gunnar - Odoo have a lot to gain and further contributions from them to make this happen would be gratefully received!
Lets keep going and get the project funded! All social media and promotion is welcome.
Stuart J Mackintosh
Director / Owner
<img alt="OpusVL Logo" src="cid:firstname.lastname@example.org" height="38" width="150">
Business management software - Joined-up, flexible & open
• Open Source Specialists
T: 01788 298 450
DDI: 01788 298 457
-- credativ Ltd Open Source for Business UK office: +44 1788 298150 Email: email@example.com Web: http://www.credativ.co.uk/ credativ Ltd is registered in England & Wales, company no. 5261743 Suite 5 | Bloxam Court | Corporation Street | Rugby | CV21 2DU | UK Certified by CompTIA / AccredIT UK with the ICT Supply standard of quality for Software Product Design and Development
Post to: mailto:firstname.lastname@example.org
OpusVL, Stuart J Mackintosh