Firewall Wizards mailing list archives

Re: Re: Ethics, morality and the industry

From: "Paul D. Robertson" <paul () compuwar net>
Date: Thu, 28 Oct 2004 20:14:17 -0400 (EDT)

On Thu, 28 Oct 2004, Mike Smith wrote:

<de-lurk>
The man committed crimes, was caught and convicted, and served the time awarded
by various governments.  From what I read, he has been clean for a quarter of a
century.  Indeed, he has helped police authorities fight criminal activities
such as he once engaged in.

I guess the issue is how long does it take before one accepts that a convicted
person has truly reformed?  If the answer is "forever," then what is the point
in ever letting him out of jail?  Can criminals never acknowledge the error of
their ways and return to civilized society?  Can we not learn anything from
them?


To my mind the issue is that he's still *profiting* from  his crimes.
That doesn't do justice to the victims, nor does it send the right message
IMO.  Crime should not pay.

Here in Canada, for instance, a convicted person must serve his full sentence
and remain "of good conduct" for three to five years (depending on the offence)
afterwards, and then he can apply for a pardon, which sets aside his criminal
record (but does not destroy it; by the way, some offences, notably violent
ones, are not pardonable).  The thinking is that the person has "paid his debt
to society" and is entitled to a relatively unfettered attempt to contribute
once again.


I think that the fettering should include profiting from whatever badness
the person did- hey, if he was lecturing on IPv6 security, then I don't
see as much of an issue.

This is _not_ to suggest that I approve of hiring self-proclaimed ex-hackers as
security professionals.  By and large, they have not "paid their debts."  There
is no evidence or behaviour that would lead you to conclude they have reformed
their ways.

Disclosure: I'm planning on attending the CSI conference (if upper management
approves the travel request).

<lurk>


I hope that in the future, CSI chooses its keynote speakers more
carefully.

Paul
-----------------------------------------------------------------------------
Paul D. Robertson      "My statements in this message are personal opinions
paul () compuwar net       which may have no basis whatsoever in fact."
probertson () trusecure com Director of Risk Assessment TruSecure Corporation
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Ethics, morality and the industry Paul D. Robertson (Oct 28)
- <Possible follow-ups>
- RE: Ethics, morality and the industry MHawkins (Oct 28)
  - RE: Ethics, morality and the industry R. DuFresne (Oct 28)
  - Message not available
    - RE: Ethics, morality and the industry Marcus J. Ranum (Oct 28)
    - Re: Ethics, morality and the industry Adrian Grigorof (Oct 29)
- Re: Ethics, morality and the industry Mike Smith (Oct 28)
  - Re: Re: Ethics, morality and the industry Paul D. Robertson (Oct 28)
    - Re: Re: Ethics, morality and the industry Greg Skouby (Oct 29)
    - Re: Re: Ethics, morality and the industry Paul D. Robertson (Oct 29)
- Re: Ethics, morality and the industry Paul Foster (Oct 29)
  - Re: Re: Ethics, morality and the industry Marcus J. Ranum (Oct 29)
    - Re: Re: Ethics, morality and the industry Paul Foster (Oct 29)
- RE: Re: Ethics, morality and the industry MHawkins (Oct 29)
  - Re: Re: Ethics, morality and the industry Paul Foster (Oct 29)
  - RE: Re: Ethics, morality and the industry Paul D. Robertson (Oct 29)
- Re: Ethics, morality and the industry Paul Foster (Oct 29)
  - Re: Re: Ethics, morality and the industry Marcus J. Ranum (Oct 29)

(Thread continues...)