[Owasp-board] Your Concern?

dinis cruz dinis.cruz at owasp.org
Mon Aug 23 10:50:00 UTC 2010


also CCing the GPC members doing the inquire and the owasp board

Thx for the patience and time you are spending on this, we will sort
it out in the end

Dinis Cruz

On 23 Aug 2010, at 02:02, Brad Empeigne <brad.empeigne at gmail.com> wrote:

> for your info
>
>
> ---------- Forwarded message ----------
> From: Christian Heinrich <christian.heinrich at owasp.org>
> Date: Sat, Aug 21, 2010 at 10:47 AM
> Subject: Re: Your Concern?
> To: Brad Empeigne <brad.empeigne at gmail.com>
>
>
> Brad,
>
> On Fri, Aug 20, 2010 at 8:46 PM, Brad Empeigne <brad.empeigne at gmail.com
> > wrote:
>> for point 1, I never said it did not conform to the perl best
>> practices or cpan script standards. It is not much source code so it
>> would not be hard to make it conform to standards like these. My
>> comment was more general because it looks like it was written by
>> someone far from proficient with perl or in fact programming. It is
>> just my observation, but maybe you deliberately made it look basic.
>
> Yes, it was intended for learning (i.e. someone without knowledge of
> Perl).  That's why I didn't use the Net-Google and/or
> WWW-Search-Google CPAN Modules.  Furthermore, it was intended as a
> Proof of Concept (PoC) and was listed an Alpha Status Project within
> OWASP.
>
> Can you please highlight some examples (such as line numbers) of how
> "it was written by someone far from proficient with perl or in fact
> programming" which aren't listed as a TODO please?
>
>> for point 2/3, in the presentation lineup for each of those
>> conferences your name is amongst some very talented security people
>> who present on some great research. That in itself attracts publicity
>> and also suggests your work is excellent and warrants lots of
>> exposure
>> and travel. But i dont think it was that great at all and the fact it
>> was from OWASP, has a familiar name, and also for each time you got
>> accepted at a conference that built up your references list to use
>> for
>> your next submission, it helped you present at several conferences.
>
> I already had a significant public reputation in Australia and hence
> presenting outside of Australia wouldn't benefit me in anyway.
>
> https://lists.owasp.org/pipermail/owasp-leaders/2009-September/001976.html
> highlights that there is no benefit in representing OWASP at
> conferences or donating projects to OWASP, etc.
>
> That stated, both SecTor and SyScan have invited me back to present.
>
>> In summary i guess to me i thought it all turned out to be
>> disappointing on a technical level, but it is just my opinion and
>> maybe the majority think it is in fact a well done project. Kind
>> regards,
>
> So is the GHDB therefore superior in your opinion?
>
> Can I ask why you sent
> https://lists.owasp.org/pipermail/owasp-australia/2010-June/
> 000285.html
> to the OWASP Melbourne Chapter Mailing List rather then the OWASP
> Google Hacking Mailing List?
>
> Also, why didn't you to call me when I provided my mobile number
> several times?
>
>
> --
> Regards,
> Christian Heinrich - http://www.owasp.org/index.php/user:cmlh
> OWASP "Google Hacking" Project Lead - http://sn.im/
> owasp_google_hacking



More information about the Owasp-board mailing list