[Owasp-board] Tom - Re: The END - Re: Reputation - Re: A shame: OWASP event in Barcelona...

Tom Brennan - OWASP tomb at owasp.org
Fri Nov 10 16:09:04 UTC 2017


Thank you, so now that we have a dialog.

Let's focus on working together.



On Fri, Nov 10, 2017 at 10:53 AM, Vicente Aguilera Díaz <
vicente.aguilera at owasp.org> wrote:

> Hi Tom, Josh, Matt,
>
> I completely agree with the comments of Josh and Tom.
>
> As always, OWASP must be focused on making security in applications
> visible, and must flee from pointless polemics that do not lead to any
> situation.
>
> I accept any constructive criticism, but I do not share the idea of doing
> harm in a free way.
>
> I will continue to transmit the OWASP philosophy in our country, as I have
> been doing since 2006.
>
> Best regards,
> -- Vicente
>
>
>
>
> On Fri, Nov 10, 2017 at 2:46 PM, Tom Brennan - OWASP <tomb at owasp.org>
> wrote:
>
>> Albert just be sure to get it correct
>>
>> #1 your concern is with a local chapter and its local meeting of a
>> chapter meeting specifically you do not like the individual who was
>> selected by the chapter leader(s)
>>
>> As your aware, the owasp foundation has hundreds of chapters around the
>> world small and large managed by volunteers and the chapter handbook is the
>> guidelines provided to you previously we manage to with the assistance of
>> (1) full time employee and the community members like you.
>>
>> Violations and complaints shall be managed to https://www.owasp.org/index
>> .php/Category:Chapter_Handbook
>>
>> Having a controversal person present at a meeting is not a violation of
>> anything.
>>
>> #2 your concern is NOT about the global foundation extending membership
>> to a individual or a AppSec Conference such as a global event produced by
>> the foundation employees such as AppSecEU.org or AppSecUSA.Org rather you
>> don’t like something and have a very very strong opinion of it and your
>> making demands
>>
>> #3 we have had issues before and will have them again. The resiliency of
>> the people in the community is what makes OWASP strong not a wiki...
>>
>> 1 example of many public issues at Owasp
>> https://amp.ibtimes.co.uk/lulzsec-fbi-anonymous-hacker-irish
>> -security-312014
>>
>> #4  Your concerns have been noted
>>
>> @Vincente do you have a public reply to Albert for the record?
>>
>> Do you want to put Albert on the panel to debate with your panelist about
>> software security looks like would be a lively panel.
>>
>>
>>
>> On Fri, Nov 10, 2017 at 12:30 AM Albert Gabàs | Astabis IRM <
>> agabas at astabis.com> wrote:
>>
>>> Tom, *you can wrte now your official comment*, I can promise this media
>>> subject too:
>>>
>>> First line: The OWASP foundation host a criminal of the unlawful
>>> Espionage Agency of Catalonia in their anual event in Spain.
>>> Second line: An agency disbanded by the Goverment of Spain and linked by
>>> the US Senate to the Russian network that works in favor of secessionism.
>>>
>>> Is good for you?
>>> Well, the body of the article will be written by the media redactors, I
>>> only work in the intelligence field. :)
>>>
>>> ------------------------------
>>> *De: *"Tom Brennan, OWASP" <tomb at owasp.org>
>>> *Para: *"Albert Gabàs" <agabas at astabis.com>
>>> *CC: *"Josh Sokol" <josh.sokol at owasp.org>, "Matt Konda" <
>>> Matt.Konda at owasp.org>, "OWASP List" <owasp-board at lists.owasp.org>, "Tom
>>> Brennan, OWASP" <tomb at owasp.org>, "vicente aguilera" <
>>> vicente.aguilera at owasp.org>
>>> *Enviados: *Jueves, 9 de Noviembre 2017 22:23:21
>>> *Asunto: *Re: The END - Re: Reputation - Re: A shame: OWASP event in
>>> Barcelona...
>>>
>>> Ok be well.
>>>
>>> If there are any inquiries please have them sent to press at owasp.org for
>>> official comment.
>>>
>>>
>>> On Thu, Nov 9, 2017 at 1:07 PM Albert Gabàs | Astabis IRM <
>>> agabas at astabis.com> wrote:
>>>
>>>> DRAMA? your DRAMA will be the next weeks in the media.
>>>> The media coverage of the raid in Catalonia and the unlawful activities
>>>> of the CESICAT are in the media every day (in Spanish), the next week you
>>>> will see the name of the Mr. Panadero and the OWASP in the media, I can
>>>> promise it.
>>>>
>>>> The plausible breach of professional code of conduct, and ethics is in
>>>> another domain, and the charges must be a clear evidence of the breach to
>>>> stop the participation of this panellist in any OWASP events until their
>>>> charges will be removed by the court.
>>>>
>>>> The End
>>>> ------------------------------
>>>> *De: *"Tom Brennan, OWASP" <tomb at owasp.org>
>>>> *Para: *"Albert Gabàs" <agabas at astabis.com>
>>>> *CC: *"Tom Brennan, OWASP" <tomb at owasp.org>, "Matt Konda" <
>>>> Matt.Konda at owasp.org>, "OWASP List" <owasp-board at lists.owasp.org>,
>>>> "Josh Sokol" <josh.sokol at owasp.org>, "vicente aguilera" <
>>>> vicente.aguilera at owasp.org>
>>>> *Enviados: *Jueves, 9 de Noviembre 2017 18:56:49
>>>> *Asunto: *Re: Reputation - Re: A shame: OWASP event in Barcelona...
>>>>
>>>> Albert,
>>>>
>>>> You appear to be a CEO of your own company for 12 years it appears
>>>> https://www.linkedin.com/in/albertgabas/  and Mr Diaz has been also
>>>> been in the industry for some time https://www.linkedin.com/
>>>> in/vaguileradiaz/  I don't know either of you personally.
>>>>
>>>> I suggest you guys put down the keyboards, pick up the phone and talk
>>>> and find common ground make a great chapter and a great event.
>>>>
>>>> OWASP is not about DRAMA it's about raising visibility for software
>>>> security and providing a platform for that purpose.
>>>>
>>>> -Tom
>>>>
>>>>
>>>>
>>>> On Thu, Nov 9, 2017 at 12:18 PM, Albert Gabàs | Astabis IRM <
>>>> agabas at astabis.com> wrote:
>>>>
>>>>> OWASP is your brand, you must take care of your reputation, the
>>>>> reputation of your events, and the reputation of the panellists in your
>>>>> events if want a good reputation.
>>>>>
>>>>> But do not worry, if you consider this panellist a good panellist, *is
>>>>> your Brand in risk in Spain*.
>>>>>
>>>>> The charges are:
>>>>>
>>>>> 1.- Unlawful spying the citizens from CESICAT CERT and corruption.
>>>>> 2.- And Mr. Panadero is also charged of a crime, unlawfull
>>>>> interception of telecommunications (mails, etc.) in the Catalonia
>>>>> Government internet domain.
>>>>>
>>>>> https://elpais.com/elpais/2013/12/05/inenglish/1386264718_921213.html
>>>>>
>>>>> And the CESICAT-CERT was the genesis of the unlawful spy agency of the
>>>>> Catalan Goverment (Spanish region), *now raided by the Spanish Police*
>>>>> .
>>>>>
>>>>> I advise the Spanish Police and the raid is based in my criminal
>>>>> complaint against CESICAT CERT and and people like Mr. Panadero.
>>>>>
>>>>> King regards,
>>>>> Albert Gabàs
>>>>>
>>>>> ------------------------------
>>>>> *De: *"Tom Brennan, OWASP" <tomb at owasp.org>
>>>>> *Para: *"Albert Gabàs" <agabas at astabis.com>
>>>>> *CC: *"Tom Brennan, OWASP" <tomb at owasp.org>, "Matt Konda" <
>>>>> Matt.Konda at owasp.org>, "OWASP List" <owasp-board at lists.owasp.org>,
>>>>> "Josh Sokol" <josh.sokol at owasp.org>, "vicente aguilera" <
>>>>> vicente.aguilera at owasp.org>
>>>>> *Enviados: *Jueves, 9 de Noviembre 2017 17:54:30
>>>>> *Asunto: *Re: A shame: OWASP event in Barcelona...
>>>>>
>>>>> Albert, you seem very passionate about this and I encourage you to
>>>>> meet with the multiple chapter leaders and members of the chapter to voice
>>>>> your concerns or join the team.  OWASP Members can leverage the items I
>>>>> provided below, however...... after a quick check of membership roster, I
>>>>> don't see your name Albert Gabàs or Vicente Aguilera on the roster.
>>>>>
>>>>> https://docs.google.com/spreadsheets/d/1WN07dNGBldvYC_RmTKKs
>>>>> rYdguSUghlLP5A7QfQa6G9M/edit#gid=0
>>>>>
>>>>> This fact does open up additional questions IMHO about the chapter and
>>>>> the upcoming event, chapter management etc., but I defer that to our
>>>>> chapter handbook and community manager who has a full-time focus on issues
>>>>> like this.
>>>>>
>>>>> For tracking purposes, submit your request here to open up an
>>>>> actionable inquiry action: https://www.tfaforms.com/308703 this is
>>>>> also accessible from www.owasp.org and contact us.
>>>>>
>>>>>
>>>>> On Thu, Nov 9, 2017 at 10:46 AM, Albert Gabàs | Astabis IRM <
>>>>> agabas at astabis.com> wrote:
>>>>>
>>>>>> In Spain a people under investigation and charged is a people
>>>>>> with proven evidence of committing a crime.
>>>>>>
>>>>>> The court action is in the legal domain.
>>>>>>
>>>>>> But the plausible breach of professional code of conduct, and ethics
>>>>>> is in another domain, and the charges must be a clear evidence of the
>>>>>> breach to stop the participation of this panellist in any OWASP events
>>>>>> until their charges will be removed by the court.
>>>>>>
>>>>>> If there is a penal code, why you need a Ethics Code in your
>>>>>> Association? Are not the same, and you are not stupid.
>>>>>>
>>>>>> But the charges are not linked to the political situation or driving
>>>>>> drunk, the charges are:
>>>>>>
>>>>>> 1.- Unlawful spying the citizens from CESICAT CERT and corruption.
>>>>>> 2.- And Mr. Panadero is also charged of a crime, unlawfull
>>>>>> interception of telecommunications (mails, etc.) in the Catalonia
>>>>>> Government internet domain.
>>>>>>
>>>>>> I have attached the act dictated by the court to open the trial
>>>>>> against Mr. Panadero.
>>>>>> And also Mr. Panadero was jailed by the Spanish Police in the 2000 in
>>>>>> another raid against telecom fraud.
>>>>>>
>>>>>> Mr. Aguilera knows all the details, are true.
>>>>>> The participation of this trash-man as panellist, is an offence to
>>>>>> all ethical professionals and serious professionals that follow OWASP with
>>>>>> admiration.
>>>>>>
>>>>>> Kind regards,
>>>>>> Albert Gabàs
>>>>>>
>>>>>> ------------------------------
>>>>>> *De: *"Tom Brennan - OWASP" <tomb at owasp.org>
>>>>>> *Para: *"Albert Gabàs" <agabas at astabis.com>
>>>>>> *CC: *"Matt Konda" <Matt.Konda at owasp.org>, "OWASP List" <
>>>>>> owasp-board at lists.owasp.org>, "Tom Brennan" <Tom.Brennan at owasp.org>,
>>>>>> "Josh Sokol" <josh.sokol at owasp.org>, "vicente aguilera" <
>>>>>> vicente.aguilera at owasp.org>
>>>>>> *Enviados: *Jueves, 9 de Noviembre 2017 15:14:15
>>>>>> *Asunto: *Re: A shame: OWASP event in Barcelona...
>>>>>>
>>>>>> Perhaps his talk/story will speak to software security?
>>>>>>
>>>>>> Re the conference / event / seminar / meeting what ever you call it
>>>>>> locally is compliant with the chapter guideline/handbook see:
>>>>>> https://www.owasp.org/index.php/Category:Chapter_Handbook that
>>>>>> should be examined
>>>>>>
>>>>>> All cited policy violations can be directed to our staff members for
>>>>>> assistance / review.
>>>>>>
>>>>>> You feel that there is a whistleblower incident as defined here
>>>>>> https://www.owasp.org/index.php/Governance/Whistleblower_Policy formally
>>>>>> address it.
>>>>>>
>>>>>> Regarding your question of under investigation and charged.  In legal
>>>>>> actions, guilty until proven innocent in a court of law is always my
>>>>>> posistion.
>>>>>>
>>>>>> Try to work together, the world is full of hate, and people casting
>>>>>> stones. OWASP’s mission is to raise visibility for software security focus
>>>>>> on that aspect and encourage local face to face discussion, email is not
>>>>>> helpful in fixing these type of issues
>>>>>>
>>>>>> You asked, there is my 2 cents
>>>>>>
>>>>>> - Brennan
>>>>>>
>>>>>>
>>>>>> On Thu, Nov 9, 2017 at 6:58 AM Albert Gabàs | Astabis IRM <
>>>>>> agabas at astabis.com> wrote:
>>>>>>
>>>>>>> Dear Mr. Brennan, Mr. Sokol, Mr. Konda,
>>>>>>>
>>>>>>> https://twitter.com/OWASPSpain/status/928235840043737090
>>>>>>>
>>>>>>> Do you think that a person under investigation and charged with
>>>>>>> various crimes must be a panellist in the next OWASP Spain event?
>>>>>>>
>>>>>>> I have warned Mr. Vicente Diaz, but he don't know your code of
>>>>>>> ethics.
>>>>>>> Is a shame for your professional association to host a person that
>>>>>>> breach the law and breach all professional ethical principles.
>>>>>>>
>>>>>>> But why Mr. Vicente Aguilera invite a trash-man to the next OWASP
>>>>>>> event in Barcelona? Because is a good client of their enterprise.
>>>>>>> These stupid movement from OWASP Spain will be reflected in the
>>>>>>> Spanish media the next week. I will work for a massive media coverage,
>>>>>>> taking advantage of the political situation.
>>>>>>>
>>>>>>> I repeat: Do you think that a person under investigation and
>>>>>>> charged with various crimes must be a panellist in the next OWASP Spain
>>>>>>> event?
>>>>>>>
>>>>>>> Kind regards,
>>>>>>> Albert Gabàs
>>>>>>>
>>>>>> --
>>>>>> *Tom Brennan*
>>>>>> *Proactive RISK*
>>>>>> www.proactiverisk.com
>>>>>> Mobile: 973-202-0122 <(973)%20202-0122> | Schedule a Meeting
>>>>>> <https://secure.scheduleonce.com/proactiverisk>
>>>>>>
>>>>>> --
>>> *Tom Brennan*
>>> *Proactive RISK*
>>> www.proactiverisk.com
>>> Mobile: 973-202-0122 <(973)%20202-0122> | Schedule a Meeting
>>> <https://secure.scheduleonce.com/proactiverisk>
>>>
>> --
>> *Tom Brennan*
>> *Proactive RISK*
>> www.proactiverisk.com
>> Mobile: 973-202-0122 <(973)%20202-0122> | Schedule a Meeting
>> <https://secure.scheduleonce.com/proactiverisk>
>>
>
>
>
> --
> _________________________________
> Vicente Aguilera Diaz
> OWASP Spain chapter leader
> CISA, CISSP, CSSLP, ITIL, PCI ASV
> CEH Instructor, ECSP Instructor, OPSA, OPST
> vicente.aguilera at owasp.org
> Homepage: http://www.owasp.org/index.php/Spain
> Mailing list: http://lists.owasp.org/mailman/listinfo/owasp-spain
> Twitter: @vaguileradiaz
> Personal website: http://www.vicenteaguileradiaz.com
> PGP: 0xD21C1EF8 - D1F0 E0B5 2ACC B4B5 57CD  C427 58B7 CF0D D21C 1EF8
> _________________________________
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20171110/14eb3f1a/attachment-0001.html>


More information about the Owasp-board mailing list