OWASP AppSec Europe 2008

I thought it would be useful to copy & paste my blog post about the
forthcoming AppSec conference here. Please have a look at the last
paragraph, where I propose to use these conferences for bi-yearly
ModSecurity user meetings.

Judging from the list of talks alone, it looks like OWASP AppSec
Europe in Belgium is going to be a great conference, especially if you
are interested in web application firewalls and ModSecurity:

   1. I will be giving a talk on web application firewall evaluation
(Evaluation Criteria for Web Application Firewalls), which will be
based on the Web Application Firewall Evaluation Criteria (WAFEC)
project.
   2. Christian Folini will be discussing the REMO project (Positive
ModSecurity rulesets / Input validation).
   3. Alexander Meisel will be talking about how to best use a web
application firewall (Best Practices Guide: Web Application
Firewalls), which is based on the document of the same name (available
in German, as PDF).
   4. Mario Heiderich will be promoting the PHPIDS project (PHPIDS
Monitoring attack surface activity).

Ofer Shezaf, the Core Rules guru, and Ryan Barnett, the ModSecurity
Community Manager will be there (Ofer will be giving his talk about
web hacking trends: Trends in Web Hacking Incidents: What's Hot in
2008), as will be Christian Bockermann (it is rumoured), who has been
working on some very interesting software related to ModSecurity.

Finally, Ryan is going to be teaching a two-day ModSecurity training
course, which will cover a lot of ground, starting from the basics and