<div dir="ltr">I followed up with the author to clarify the situation. But we certainly don't proof any articles - people can write what they want. It's good visibility and the title can be a bit misleading, such is life though. <br>
</div><div class="gmail_extra"><br clear="all"><div><div dir="ltr"><br>--<br>Michael Coates<br>@_mwc<br><br></div></div>
<br><br><div class="gmail_quote">On Wed, Jan 29, 2014 at 2:56 PM, Eoin Keary <span dir="ltr"><<a href="mailto:eoin.keary@owasp.org" target="_blank">eoin.keary@owasp.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div dir="auto"><div>I know "bobby tables" ill talk to him. He's Irish.</div><div>The cso article heading is misleading i that what he is referring to? Seems we don't get to proof read articles before they launch. </div>
<div class="im"><div><br><br>Eoin Keary<div>Owasp Global Board</div><div><a href="tel:%2B353%2087%20977%202988" value="+353879772988" target="_blank">+353 87 977 2988</a></div><div><br></div></div></div><div><div class="h5">
<div><br>On 29 Jan 2014, at 22:51, Tobias <<a href="mailto:tobias.gondrom@owasp.org" target="_blank">tobias.gondrom@owasp.org</a>> wrote:<br><br></div><blockquote type="cite"><div>
  
    
  
  
    <div>I totally agree with Michael. <br>
      No message is "fool-proof". With every message there are always a
      few who don't read carefully enough and then jump to wrong
      conclusions. This is normal. So in these single instances we just
      clarify with the right information. <br>
      <br>
      And overall, I am actually quite happy with the reception and
      feedback from the general security community and beyond. <br>
      <br>
      Best regards, Tobias<br>
      <br>
      <br>
      On 29/01/14 22:36, Michael Coates wrote:<br>
    </div>
    <blockquote type="cite">
      <div dir="ltr">
        <div>Sure, some people got the wrong impression without reading
          the whole story. But these things happen and I followed up
          with people to clarify. I also sent the owasp link with all
          the info. Overall I think the main message is getting out
          there nicely.<br>
          <br>
        </div>
        <div>I'm not concerned about sending clarifications myself.
          We're just providing information to be sure people are aware
          of all the details.<br>
        </div>
        <div><br>
        </div>
        -Michael<br>
      </div>
      <div class="gmail_extra">
        <br clear="all">
        <div>
          <div dir="ltr"><br>
            --<br>
            Michael Coates<br>
            @_mwc<br>
            <br>
          </div>
        </div>
        <br>
        <br>
        <div class="gmail_quote">On Wed, Jan 29, 2014 at 2:13 PM,
          Christian Heinrich <span dir="ltr"><<a href="mailto:christian.heinrich@cmlh.id.au" target="_blank">christian.heinrich@cmlh.id.au</a>></span>
          wrote:<br>
          <blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Tobias,<br>
            <br>
            Due to the public perception that OWASP has re-associated
            itself the<br>
            RSA Conference after condemning it two weeks before I
            strategically<br>
            withhold my public comment for the the moment.<br>
            <br>
            Negative public sentiment such as<br>
            <a href="https://twitter.com/info_dox/status/428278242378661888" target="_blank">https://twitter.com/info_dox/status/428278242378661888</a>
            wouldn't have<br>
            occurred had the OWASP Board followed my advice and
            cancelled the<br>
            training for February 2014. Furthermore, Michael's
            clarification<br>
            achieves nothing because he is perceived as bias due to
            being an<br>
            instructor and OWASP Board Member, you need an independent
            third party<br>
            (e.g. WASC) to issuing this clarification on your behalf.<br>
            <br>
            Subsequently the message of<br>
            <a href="http://owasp.blogspot.com/2014/01/owasp-statement-on-security-of-internet.html" target="_blank">http://owasp.blogspot.com/2014/01/owasp-statement-on-security-of-internet.html</a><br>
            has been lost since the creditability of OWASP is now
            brought into<br>
            question.  Hence the reason I am strategically withhold my
            public<br>
            comment until this background noise dies down as my public
            comment<br>
            will have more impact after this negative public sentiment
            while<br>
            ensuring that the public will question OWASP creditability
            again.<br>
            <br>
            Hopeful next time I provide you with advice you will
            consider that I<br>
            have already foreseen the bad outcome for OWASP, just like
            when I<br>
            explained to Dinis at Hack in the Box Amsterdam that the
            Google<br>
            Hacking Inquiry will result in smear that is for the
            ulterior motive<br>
            of Chris and Jody.<br>
            <div><br>
              <br>
              On Wed, Jan 29, 2014 at 11:36 PM, Tobias <<a href="mailto:tobias.gondrom@owasp.org" target="_blank">tobias.gondrom@owasp.org</a>>
              wrote:<br>
              > Christian,<br>
              > yes. This is the released statement.<br>
              > <a href="http://owasp.blogspot.com/2014/01/owasp-statement-on-security-of-internet.html" target="_blank">http://owasp.blogspot.com/2014/01/owasp-statement-on-security-of-internet.html</a><br>
              > Best regards, Tobias<br>
              ><br>
              ><br>
              > On 28/01/14 23:52, Christian Heinrich wrote:<br>
              >> Tobias,<br>
              >><br>
              >> I just want to make sure that I respond to the
              correct statement which<br>
              >> I am lead to believe is<br>
              >> <a href="http://owasp.blogspot.pt/2014/01/owasp-statement-on-security-of-internet.html" target="_blank">http://owasp.blogspot.pt/2014/01/owasp-statement-on-security-of-internet.html</a>,<br>
              >> is this correct?<br>
              >><br>
              >> On Tue, Jan 28, 2014 at 11:48 AM, Christian
              Heinrich<br>
              >> <<a href="mailto:christian.heinrich@cmlh.id.au" target="_blank">christian.heinrich@cmlh.id.au</a>>
              wrote:<br>
              >>> I look forward to its release and I will
              continue my offer to receive<br>
              >>> it under embargo in the interim if you decide
              to release it to me.<br>
              >><br>
              ><br>
              <br>
              <br>
              <br>
            </div>
            <div>
              <div>--<br>
                Regards,<br>
                Christian Heinrich<br>
              </div>
            </div>
          </blockquote>
        </div>
      </div>
    </blockquote>
    <br>
  

</div></blockquote></div></div><div class="im"><blockquote type="cite"><div><span>_______________________________________________</span><br><span>Owasp-board mailing list</span><br><span><a href="mailto:Owasp-board@lists.owasp.org" target="_blank">Owasp-board@lists.owasp.org</a></span><br>
<span><a href="https://lists.owasp.org/mailman/listinfo/owasp-board" target="_blank">https://lists.owasp.org/mailman/listinfo/owasp-board</a></span><br></div></blockquote></div></div></blockquote></div><br></div>