-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On Fri, 20 Oct 2006 22:09:03 -0500 "Alice Bryson <[EMAIL PROTECTED]>" <[EMAIL PROTECTED]> wrote: >It's OK anybody start vulnerability research from script(php or >perl), >but it's not good for someone to stay at "script kid" level, huh? > >----- >mailto:[EMAIL PROTECTED] >http://www.wang-labs.com > >2006/10/21, Gadi Evron <[EMAIL PROTECTED]>: >> On Fri, 20 Oct 2006, Dr. Neal Krawetz wrote: >> > On Fri Oct 20 15:49:53 2006, Gadi Evron wrote: >> > > >> > > Cool article, but n3td3v is not gobbles. For one, easy >analysis shows he >> > > is English. >> > > >> > > Gadi. >> > >> > Thanks Gadi. >> > >> > However, I'm going to call you on this: >> > 1. What "easy analysis" are you using? >> > I listed my approaches. If you are using a different >approach, I'd >> > like to hear what it is. (I'm not trying to be >argumentative -- I >> > want to learn.) >> > >> > 2. You said, "n3td3v is not gobbles". >> > Do you know for a fact that n3td3v is not Gobbles Security? >> > Or is this an interpretation? >> > If you know for a fact, then how do you know? >> > >> > On 1-Sep-2006, a new person controlling the n3td3v account >appeared. >> > He is likely English/Brit (based on the topics he posted). >But I did not >> > see enough text to analyze. >> > The older n3td3v postings were by 3 people, not one person. >> > (And primarily by three people -- a few postings were >ambiguous and could >> > indicate more people.) >> >> 1. He speaks Real English. >> 2. He mentions UK currency. >> 3. He said as much, speaking of UK issues. >> 4. He gave his real name. >> >> Your analysis is amazing, and shows how these things should be >done. But >> misses that much. Gobbles was about fun, n3td3v took himself >seriously >> rather than just his goal of making the world a better place. >> >> Aside to that, yes, I know. But as I can't mention how, it's >silly for me >> to stick to anything but the above. >> >> >From the UK. Highly likely from the North of England or >Scotland. >> >> Did you ever talk to n3td3v or ask him? Behind all that posted, >he really >> seems like a good guy with good intentions. >> >> Your analysis really is good, but it comes to no conclusions. I >want to >> advoid the "yes he is" "no he isn't" discussion that's to >follow. View my >> comments as "opinion". >> >> Why idolize people? >> >> Gadi. >> >> > >> > -Neal >> > Neal Krawetz, Ph.D. >> > Hacker Factor Solutions >> > http://www.hackerfactor.com/ >> > Author of "Introduction to Network Security" (Charles River >Media, 2006) >> > >http://www.charlesriver.com/Books/BookDetail.aspx?productID=126130 >> > >> >> _______________________________________________ >> Full-Disclosure - We believe in it. >> Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> Hosted and sponsored by Secunia - http://secunia.com/ >> > > >-- >Have a Good Day > >_______________________________________________ >Full-Disclosure - We believe in it. >Charter: http://lists.grok.org.uk/full-disclosure-charter.html >Hosted and sponsored by Secunia - http://secunia.com/ Politics should be avoided at all costs. Please take this off list. -----BEGIN PGP SIGNATURE----- Note: This signature can be verified at https://www.hushtools.com/verify Version: Hush 2.5 wpwEAQECAAYFAkU7IeUACgkQ3AEcWsxdEQ6X9wP+OGUtdYagn3DfEbQt66cFSIhCSs38 dxN+DB/g5jXPJGvgZGy/+tN06oWXLByycT40sTG7g8aOxnN5KdhW8tNhscLEcyvM89Sg Wm3/jD9K2sP8doaiTFuIoqa2qiCYD+G8mSam3bQukIN7UfpgRTX3KGm61EjQBaiIhB5E +EoYYZ8= =OcXG -----END PGP SIGNATURE----- Concerned about your privacy? Instantly send FREE secure email, no account required http://www.hushmail.com/send?l=480 Get the best prices on SSL certificates from Hushmail https://www.hushssl.com?l=485 _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
