Good Summary of Bad Security Assumptions
This isn't the OWASP Top 10 list, but it's still very handy. Top 10 Dumb Computer Security Notions. I'm particularly fond of the "security can't be perfect; since it can't be perfect, why bother?" approach. One other notion that amuses me is the silliness of changing a password every 90 …
more ...