Re: agile hacking?

["Petko D. Petkov" <pdp.gnucitizen () googlemail com>]

Dear Reepex,

Unfortunately, you've already lost all the respect for a larger
portion of people on this mailing list as well outside of it. You have
never led by example but by bashing people on what they try to
accomplish. Everyone who has been in this industry/life style for long
enough know that they don't know everything. In fact, as the saying
goes: "A wise man never knows all, only fools know everything".

My advise to you is to stop pretending being someone and be who you
are. If you think that this project is crap then help to make it
better. Everyone that has ever written a book, knows how hard it is to
put everything together and how frustrating it is to want to put the
things that you want not having the chance to do so. It is easier to
say what is crap but 100x harder to do it wright. Also, it is very
easy to take apart people from what they have accomplished, I've done
it myself:

http://www.gnucitizen.org/blog/hamster-plus-hotspot-equals-web-20-meltdown-not/

but 100 of times harder to put yourself in their shoes:

http://www.gnucitizen.org/blog/reconsidering-the-side-jacking-attack/

Again, lead by example not by baseless comments.

Regards,
pdp

On Wed, Mar 19, 2008 at 3:59 AM, Nate McFeters <nate.mcfeters () gmail com> wrote:
> Ok, I'll buy that, that's reasonable.  I wasn't in the exchange with thoth.
> I guess when I read about a community project to write the ultimate hacking
> book, I assumed people from all backgrounds of security would be interested
> in contributing... maybe that's a bit of a Utopian view, but I could imagine
> a one stop Frankenstein of a book (probably one so large you couldn't even
> carry a hard-copy) that has some really great great stuff if the right
> people contribute.
>
> Right now, I've got disjointed information everywhere that I reference for
> various things all over my damn computer and bookshelfs... Uninformed
> papers, presentations from various sources, manuals, books, blah blah blah.
> If it was done right, I think the book could be pretty damn cool.  Of
> course, that depends on the community support and the content that comes out
> of that.  I'm not sure what PDP has envisioned for the book, I've been just
> too busy today to give the article a good read, but I've always been very
> interested in these community projects.
>
> I think that's why I love ToorCon and really was bummed that I didn't get to
> make it out to 24c3 this year... lots of collaboration going on there.
>
> Nate
>
>
> On 3/18/08, reepex <reepex () gmail com> wrote:
>
> > On Tue, Mar 18, 2008 at 10:36 PM, Nate McFeters <nate.mcfeters () gmail com>
> wrote:
> > > I don't consider myself a 'kiddie' and I've considered contributing to
> it.  I feel like the old adage of blowing out someone elses flame to make
> yours burn brighter applies here.  Reepex, I didn't get a chance to see your
> presentation at kiwicon, bit to expensive for an American on a tight budget
> to get out there, but if you have a link, I'd love to have a look.  We've
> talked before, so I assume the presentation is good since I know you know
> your stuff; however, I've also seen some cool stuff come out of PDP and
> Gnucitizen... why the need to bash?
> > I did not give the talk, thoth did. The reason I brought it up is because
> of
> > http://www.gnucitizen.org/blog/agile-hacking/#comment-116766
> > where pdp blindly assumes thoth does not have a clue, while not knowing
> his background which must be some strange complex where people think anyone
> who disagrees with them is inferior.
> > >  Web app hacking may not be the coolest topic in the world to yourself
> and many others, but it is something that a lot of companies are concerned
> with these days,
> > Yes and we agreed web hacking has its place... the point I made was that
> you cannot write 'the best hacking manual ever made' as pdp is touting it
> while only covering web hacking and running combinations of different tools
> such as kismet/tcpdump that pdp mentined as an example.
> >
>
>
> _______________________________________________
>  Full-Disclosure - We believe in it.
>  Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>  Hosted and sponsored by Secunia - http://secunia.com/



-- 

Petko D. (pdp) Petkov | GNUCITIZEN | Hakiri | Spin Hunters

gnucitizen.org | hakiri.org | spinhunters.org

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/