lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Sat, 21 Oct 2006 11:09:03 +0800
From: "Alice Bryson <abryson@...efocus.com>" <abryson@...efocus.com>
To: "Gadi Evron" <ge@...uxbox.org>
Cc: funsec@...uxbox.org, full-disclosure@...ts.grok.org.uk,
	"Dr. Neal Krawetz" <hf@...kerfactor.com>, Fergie <fergdawg@...zero.net>
Subject: Re: [funsec] Who is n3td3v?

It's OK anybody start vulnerability research from script(php or perl),
but it's not good for someone to stay at "script kid" level, huh?

-----
mailto:clt@...g-labs.com
http://www.wang-labs.com

2006/10/21, Gadi Evron <ge@...uxbox.org>:
> On Fri, 20 Oct 2006, Dr. Neal Krawetz wrote:
> > On Fri Oct 20 15:49:53 2006, Gadi Evron wrote:
> > >
> > > Cool article, but n3td3v is not gobbles. For one, easy analysis shows he
> > > is English.
> > >
> > >     Gadi.
> >
> > Thanks Gadi.
> >
> > However, I'm going to call you on this:
> > 1. What "easy analysis" are you using?
> >    I listed my approaches.  If you are using a different approach, I'd
> >    like to hear what it is.  (I'm not trying to be argumentative -- I
> >    want to learn.)
> >
> > 2. You said, "n3td3v is not gobbles".
> >    Do you know for a fact that n3td3v is not Gobbles Security?
> >    Or is this an interpretation?
> >    If you know for a fact, then how do you know?
> >
> > On 1-Sep-2006, a new person controlling the n3td3v account appeared.
> > He is likely English/Brit (based on the topics he posted).  But I did not
> > see enough text to analyze.
> > The older n3td3v postings were by 3 people, not one person.
> > (And primarily by three people -- a few postings were ambiguous and could
> > indicate more people.)
>
> 1. He speaks Real English.
> 2. He mentions UK currency.
> 3. He said as much, speaking of UK issues.
> 4. He gave his real name.
>
> Your analysis is amazing, and shows how these things should be done. But
> misses that much. Gobbles was about fun, n3td3v took himself seriously
> rather than just his goal of making the world a better place.
>
> Aside to that, yes, I know. But as I can't mention how, it's silly for me
> to stick to anything but the above.
>
> >From the UK. Highly likely from the North of England or Scotland.
>
> Did you ever talk to n3td3v or ask him? Behind all that posted, he really
> seems like a good guy with good intentions.
>
> Your analysis really is good, but it comes to no conclusions. I want to
> advoid the "yes he is" "no he isn't" discussion that's to follow. View my
> comments as "opinion".
>
> Why idolize people?
>
>        Gadi.
>
> >
> >                                       -Neal
> > Neal Krawetz, Ph.D.
> > Hacker Factor Solutions
> > http://www.hackerfactor.com/
> > Author of "Introduction to Network Security" (Charles River Media, 2006)
> > http://www.charlesriver.com/Books/BookDetail.aspx?productID=126130
> >
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>


-- 
Have a Good Day

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists