Re: Paul Asadoorian of PaulDotCom Enterprises / Podcast is ridiculous

[n3td3v <xploitable () gmail com>]

On Wed, Oct 1, 2008 at 4:59 PM, Trevow Andrews
<trevorandrws3456 () yahoo com> wrote:
> I'm sorry, I just saw his talk at NS2008 on Embedded Device Security and it
> is wholely outdated. I can't believe people listen to this man talk. He's
> been going on this embedded device security thing for years now and it's all
> years old. His book on hacking WRT54G, which was at SANS, had nothing about
> the new OpenWRT Kamikaze release, but was instead about the old White
> Russian release. Way to stay with the times buddy. Me and a few students
> noticed many of the tutorials were directly copied from tutorials on the
> internet.
>
> This speaks really bad for Sans. I'm here because my employer in the
> financial industry sent me, and it's been nothing but shit. I tried
> listening to the PaulDotCom podcast and it's riddled with inaccuracies and
> passive agressive fights bewteen Larry and Paul over which name is on the
> show title. Pauldotcom... have an ego much Paul?
>
> I wouldn't hire Paul Asadoorian or Pauldotcom Enterprises to pen test an
> Apple 2, he wouldn't be able to because there are no Core Security wizards
> to test against an Apple 2.
>
> His technical ability is that of a freshman at a technical college. He
> repeatedly makes mistakes and clearly doesn't know much about advanced
> security techniques outside of mass GUI pen testing suites. I think even
> having a podcast knocks anyone down a few points, but having a podcast and
> failing at the subject matter is just gross negligence.
>
> No real research has even come out of Paul and Larry, no real anything has
> ever come out of Paul and Larry except for advertisments and bumps.
>
> Larry Pesce is obviously the brains behind Pauldotcom. He is the only person
> who has actually made original things and done original research.
>
> Larry if you read this, go off on your own, Paul is dragging you down.
>
> I hope Sans reconsiders Paul's talks in the future, they are overly boring
> and out of date.

they banned me from their irc channel for criticizing them.

then one of them threatened to trick me into meeting up with one of
them so, they and joel esler could bump me off.

1. they don't like me for criticizing them.

2. they don't like me for mentioning on f-d that joel esler broke the
sans privacy agreement when he post a private email i sent to them to
##security.

3. they don't like me because i post on f-d that joel esler made an
unfunny joke about avaition security on a sans diary podcast and
because i threatend to tell the TSA about it.

4. they don't like me on full-disclosure in general because im
outspoken, and spoil the way they see f-d should be.

if something bad happens to me in real life, show the cops what im
saying right now.

a previous email i sent about them:

http://lists.grok.org.uk/pipermail/full-disclosure/2008-September/064304.html

they don't get the concept of full-disclosure, you fuck up, you get
exposed, it doesn't matter how respected in the scene you think you
are.

pauldotcom and joel esler, go fuck yourselves, im staying on f-d and
you'll be exposed in the future as necessary, by the way, I haven't
told the TSA about your aviation security joke, *yet*. don't tempt me,
ok?

you are not immune from criticism, get used to it bitches!

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/