Martin Knobloch martin.knobloch at owasp.org
Mon Feb 24 10:16:01 UTC 2014

Hi Christian,

First of all, my role is inside OWASP and has no legal jurisdiction outside

What I do not understand, independent if Jos has contacted Chris or not, is
the following:

#1 why would Jos would your permission to contact Chris
I do not see any restriction in any OWASP member to contact any other OWASP
Neither do I see any restriction in any non OWASP member to contact an
OWASP member or the other way around.

#2 why would the above result in a phone call of the police department
It is not clear to me why a constable would initiate a call because a
anyone has contacted Chris.

#3 why would the constable call your mother
In my European understanding of the law, you are responsible for your
action yourself as adult. Therefore, why would a Constable call your mother?

There cannot be any valid request of who can be contacted by whom with or
without your permission, based on the OWASP code of ethic or other OWASP
That your mother has complains about being contacted by the law-enforcement
if matter outside of OWASP.

The information you supply is either incomplete or I do miss other
background information to understand the validity of your request, nor I
see (or have information) why you assume the call to your mother by this
constable is initiated due to Josh has contacted Chris. Again, I do not
say, as I have no information to prove or deny, Josh did contact Chris.

If you have reason  to assume or prove of the fact of false allegation, I
only can advice you to seek legal support.

In case of questions, feel free to contact me.

 With kind regards,

On Mon, Feb 24, 2014 at 6:17 AM, Christian Heinrich <
christian.heinrich at cmlh.id.au> wrote:

> Martin,
> I would like to bring to your attention the following statement made by
> Josh Sokol of *who did not seek my permission to contact Chris Gatford*:
> *---------- Forwarded message ----------*
> *From: Josh Sokol <josh.sokol at owasp.org <josh.sokol at owasp.org>>*
>  *Date: Thu, Jan 30, 2014 at 7:55 AM*
> *Subject: Topics of Discussion for This Weeks Call*
> *To: "christian.heinrich at cmlh.id.au <christian.heinrich at cmlh.id.au>"
> <christian.heinrich at cmlh.id.au <christian.heinrich at cmlh.id.au>>*
> *[SNIP - Content Irrelevant]*
> *I want to call out a specific section of the OWASP Code of Ethics
> (https://www.owasp.org/index.php/About_The_Open_Web_Application_Security_Project#Code_of_Ethics
> <https://www.owasp.org/index.php/About_The_Open_Web_Application_Security_Project#Code_of_Ethics>)
> that reads: "Treat everyone with respect and dignity".  In order to not
> serve any bias in my research, I had a call with Christ Gatford last night
> where he stated that you had a physical altercation with him very recently
> where you tried to pull down his pants.*
> *[SNIP - Content Irrelevant]*
> As of Friday my mother has complained to me about receiving continued
> telephone calls from a Constable at Manly Police Station.
> I spoke to the Constable yesterday (Sunday) just after 6PM and informed
> him that Josh Sokol of OWASP had made contact with Chris Gatford and this
> has prompted Chris Gatford to file a false allegation with NSW Police
> possibly due to Josh's continued and [false] claim that I am "seeking
> vengeance" against Chris Gatford which is nothing more than hearsay, false
> and untrue.
> I expect that the NSW Police will request the confidential recording of
> all conference calls so I will request that they are *not destroyed so
> they can be tendered into evidence*.  This is not permission to publish
> the conference call to the public of either Chris Gatford or I.
> I expect that as in the past that I the NSW Police have already determined
> due to lack of evidence that I am *innocent beyond a reasonable doubt* to
> yet another false allegation made by Chris Gatford to NSW Police that the
> rumour mill will once again attempt smear me with possible criminal dealing
> based on unwarranted and knee jerk decisions made by particular OWASP Board
> Members without any supporting evidence and regard to the fact that I have
> maintained an unblemished criminal record that has resulted in lost
> opportunities as Josh Sokol decided on a whim to contact with Chris Gatford
> who resigned from OWASP in August 2012 i.e.
> http://lists.owasp.org/pipermail/owasp-sydney/2013-January/000177.html
> As Josh's insists on citing
> https://www.owasp.org/index.php/About_The_Open_Web_Application_Security_Project#Code_of_Ethicsthen I would like to *formally
> request to bring Josh to account with his stated ethics* specifically:
>    - *Perform all professional activities and duties in accordance with
>    all applicable laws and the highest ethical principles;*
>    - *Refrain from any activities which might constitute a conflict of
>    interest or otherwise damage the reputation of employers, the information
>    security profession, or the Association;*
>    - *Not intentionally injure or impugn the professional reputation of
>    practice of colleagues, clients, or employers;*
>    - *Treat everyone with respect and dignity; and*
>    - *To avoid relationships that impair -- or may appear to impair --
>    OWASP's objectivity and independence.*
> I also want a condition placed on Josh Sokol revoked OWASP membership that *desists
> further contact with me and his unwarranted representation of me to Chris
> Gatford*.
> I would like to highlight that had Josh *not* ignored my continued warning
> then OWASP would not have been drawn into something that will cause it
> unwanted attention in the public domain as had been brought about with the
> OWASP Google Hacking Inquiry.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/governance/attachments/20140224/4eff8e47/attachment-0001.html>

More information about the Governance mailing list