[Owasp-board] Fwd: Australia mailing list and activity

Seba seba at owasp.org
Sun Aug 15 13:05:45 UTC 2010


fyi - christian reacting on my request to have every chapter leaders
input from Australia

--Seba


---------- Forwarded message ----------
From: Christian Heinrich <christian.heinrich at owasp.org>
Date: Sat, Aug 14, 2010 at 3:00 AM
Subject: Re: Australia mailing list and activity
To: Seba <seba at owasp.org>
Cc: global_chapter_committee at lists.owasp.org, "anne.luk at gmail.com"
<anne.luk at gmail.com>, "xntrik at gmail.com" <xntrik at gmail.com>,
"joshua at qwek.com" <joshua at qwek.com>, "david.taylor at bankwest.com.au"
<david.taylor at bankwest.com.au>, "jabighanem at deloitte.com.au"
<jabighanem at deloitte.com.au>, "paul.theriault at stratsec.net"
<paul.theriault at stratsec.net>, "Jp at haplessvictim.com"
<Jp at haplessvictim.com>, "Chris at hacklabs.com" <Chris at hacklabs.com>,
Andrew van der Stock <vanderaj at owasp.org>, Kate Hartmann
<kate.hartmann at owasp.org>, OWASP Foundation Board List
<owasp-board at lists.owasp.org>


Seba,

On Fri, Aug 13, 2010 at 7:35 PM, Seba <seba at owasp.org> wrote:
> Chris and Andrew already reacted positively on this, so I would like
> to have everybody's opinion on this?

By "Chris" are you referring to "Chris Gatford" i.e. the same person
the GCC instructed AvdS to remove as a leader from the Sydney Chapter
in February 2010 and since his return has attended one of three
Chapter Meetings i.e. the same person that I have been referring to in
the correspondence to you and Kate Hartman.

Of course Chris Gatford is seeking an endorsement of this as it
provides him with a counterpoint to having him removed as the Chapter
Leader.  Plus, OWASP is a great way to market
http://www.hacklabs.com/web-app-penetration-testing/ even thought
Chris Gatford can't distinguish between CSRF and XSS i.e.
http://www.zdnet.com.au/gmail-cookie-vulnerability-exposes-user-s-privacy-339282407.htm
vs http://www.gnucitizen.org/blog/google-gmail-e-mail-hijack-technique/

This is why I am withdrawing the request i.e. you have damaged the
success of my investigation which AvdS made you aware of by recklessly
contacting people who you considered might be Chapter Leaders without
having me control that correspondence.  Hence, I now need to bring the
investigations forward so I can announce remove the old Chapter
Leaders and announce the new Chapter Leaders.  I was planning to do
this discretely (this is why I was planning to contact them early next
week) but it would appear that it will become a more complicated
public bloodbath because you hadn't sought clarification directly from
me.


--
Regards,
Christian Heinrich - http://www.owasp.org/index.php/user:cmlh
OWASP "Google Hacking" Project Lead - http://sn.im/owasp_google_hacking



More information about the Owasp-board mailing list