Interview: Grill John Vranesevich of AntiOnline

Can you say "controversial figure," boys and girls? Within the hacker/cracker crowd, nobody stirs up as much noise as John "JP" Vranesevich, founder and owner of the computer security site AntiOnline.com. This is your chance to go straight to the source and ask John himself what's up with all the sound and fury that always seems to surrounds him. (Punch the "Read More" link to continue.)

Before you start posting questions for John, you may want to learn a little more about him. First check his Web site, AntiOnline. Then take a look at this story about him in The New York Times (free registration required). And, for a sample of the kind of animosity John has stirred up among some members of the "inner circle "hacker/cracker and computer security crowd, you might want to check this site, too.

We expect this interview to be full of fire. Fine. We have our flameshields set to "high." But realize that the questions we forward to to JP Tuesday afternoon are subject to our usual screening process; we're only going to send him the 10 - 15 questions deemed most interesting and/or relevant by Slashdot moderators and editors, so please try to be as level-headed as possible.

John's answers will appear Friday.

Question #1

[mochaone]

Why are you hated so damn much and do you care?

hmmm...

[Psarchasm]

1 (and only). Do you honestly consider yourself a computer security expert?

wireless technology

[imac.usr]

What's your opinion on the security of wireless standards like 802.11? Are devices like the AirPort secure enough, and if so, for how long?

Re:wireless technology

[imac.usr]

Er, never mind. After doing some more research on the sites mentioned, I'm no longer certain I want this question answered by this individual. It appears (from what I can tell) that there's some serious questions as to his credibility which I was not aware of when I posted. My apologies for wasting the bandwidth; please do not moderate either of these posts beyond their current level.

Re:wireless technology

[Foogle]

Gee, it's too bad you recanted: That post may have been the only question in this group that wasn't inflammatory by nature. Oh well :)

-----------

"You can't shake the Devil's hand and say you're only kidding."

Re:wireless technology

[jbf]

802.11? Secure? interop means anyone can read your bits... especially since the 802.11 phy layer spec is out there... dunno if the Linux WaveLAN II drivers have promiscuous mode, but I'm sure you can hear the data (otherwise you can't get the DCF to work)

You can always encrypt at the link layer; Lucent's WaveLAN line includes some encryption that they call WEP (wired equivalent privacy).

Re:wireless technology

[Crawl]

Man, it's too bad you said that. Personally, I was hoping that it would be moderated way, way up there so that JP almost had to answer it. I'd love to see how poor his answer was. Almost all of us know that he actually knows next to nothing about actual computer security, and so it'd be great to see him struggle to answer a reasonably simple question.

On the other hand, what people have been saying about boycotting this interview actually makes more sense. Oh well....

This disappoints me

[akmed]

Seeing slashdot contribute to the fame of such a character just really disgusts me. Everything I've read says that this guy is a self-promoting nobody who doesn't know his stuff, and everything I've seen him do involves him sueing someone because they came out and said as much. The only question I have is why he even thinks he deserves to be interviewed here. I've never heard of anything positive coming from him and I've heard of a lot of negative stuff
-Mike

Re:This disappoints me

[neo]

...and yet you do nothing to investigate this perception. Here is your chance to decide for yourself about this person and you waste your chance by mouthing off. Neo

Re:This disappoints me

[akmed]

I wasn't trying to be particularly productive towards finding out about him. I don't really like this fellow at all. I don't want to investigate him because it only brings more notoriety to him. What I'd like to see is some system whereby there're two polls on slashdot. One for whatever poll topic is running and another for who we should interview. If there was one for that, I'd have voted for someone else and I wouldn't be commenting here. Instead, I am commenting here because it's the only way to let them know that I disagree with the choice of person to interview. Perhaps even just a poll to find out whether or not people are happy with the currently chosen person. My subject should have expressed that I wasn't exactly making an investigative comment, but if not, sorry. As for "investigating the perception," I don't feel that my opinions about this fellow are a perception when he's done everything possible to convince everyone that what I've said is close to the mark. I recall an article a month or two ago that confirmed my thoughts for me. As for mouthing off, again, I wasn't trying to make a comment to be posted to him, but rather attempting to make my opinion of the choice of interviewy known. Like I mentioned, a poll of some sort for the interview (either pre-interview or post-interview) would be very useful to avoiding comments like my original one (and these subsequent ones) that aren't entirely relevant as far as being passed on goes, but should be useful for determining who to interview.
-Mike

Re:This disappoints me

[BitPoet]

When reading this the words "Tyranny of the Majority" suddenly popped into my head.

What is the worst that can happen from this interview? More people not familiar with him (like me) will learn who he is and what he does. Maybe he'll say something insightful, or maybe he'll say something inciteful.

From some of the other comments, this looks like it could be similiar to interviewing a KKK member at a Black Panther meeting.

-BitPoet

Re:This disappoints me

[mrex]

...and yet you do nothing to investigate this perception.

OK, well take it from someone who has then. JP, and his friend Carolyn, are the definition of shady. They are shameless self promoters, public image spin doctors, and can only be trusted to do what is best for themselves.

The first thing I asked when I read this was "Why on earth is /. giving JP another forum in which to convince the gullible that his mightily-spun version of everything is true?" This is not going to be an informative interview in the normal sense of the term. For those who already know JP, it will be nothing but another among many exhibitions of his spin-doctor skills. For those who don't know him, some may actually be decieved.

Why is he seeking this much publicity? Probably because his site is going down the tubes. Updates are anything but regular, the information available is the same stuff you can get anywhere (and in many cases, it's exactly the same information), and his investors may be getting a little antsy at all the hatred he's attracted in the community that he's claimed to be such a part of.

Anyway, if this is going to be a real interview, I'll play Mike Wallace and ask the tough questions:

John, how do you respond to the allegations made and supported by pretty convincing evidence that you've violated the copyright of numerous web news organizations by copy-pasting nearly (or in some cases, fully) verbatim, especially the cases of Discovery On-line, Hacker News Network, and Attrition?

Re:This disappoints me

[akmed]

Slashdot, as the title in the header itself declares, is about news for nerds and stuff that matters. To throw about the phrase "tyranny of the majority," (a phrase which in itself is flawed as the term tyrant itself comes from greek (a language I'm studying) in which it implies an authoritarian rule by one individual and is used to contrast with the rule by the demos (the people), ) is just bizarre. To answer more clearly why I am distressed by this, though, it needs merely be said that my original post, and the subsequent posts of quite a number of people in many various threads, was placed entirely because I myself feel that interviewing someone that I feel to be a shameless loser is a waste of time for slashdot and its readers. My next post explained more clearly what I was trying to say in my original post and expressed my desire for some sort of alternate feedback mechanism for interviews. And now this comment should clarify that the entire purpose of these interview things, to my knowledge, is to interview and pick the brains of people that it would be interesting to know more about/hear more from. I don't want to know anymore than I already do about this guy, and I wish that I'd never hear anything again from him. If you're interested in him, go research. There was an article in the NY Times a small while back (I referenced an article in my previous post, but only recalled that it was the Times article through reading other people's posts) that summarizes him quite well. He's not someone that I want to hear anything from. Implying that somehow just because a large number of people here think this is a waste of time and that we'd much rather hear from someone more interesting, that therefore we form a tyranny of the majority is ludicrous and offensive, and phrases like that are only meant to try to silence people whose opinions you disagree with, thereby effecting the same concept that you yourself attempt to accuse others of. This is a public forum. The opinions of none are silenced, however it is the operators who chose what we hear, and I posted solely to let them know that what I'm hearing in this case isn't something I care to know more about, and that this fellow isn't someone I care to hear more from.
-Mike

Re:This disappoints me

[Chuut-Riit]

I can certainly see your point. Everything that I've read about this guy that was written by anyone besides dumbasses in the media has been uniformly negative.

I disagree, however, with the notion that interviewing him is wrong because it provides him with a forum. I really doubt that anyone who reads /. is going to be fooled by anything that this guy says. More importantly, the level of questions likely to be submitted to him (if the use of the term "grill" in the announcement is any guide) are probably going to point out his ignorance. He's likely to provide answers that make clear that he is (1) being evasive, (2) completely clueless about the question asked, or (3) irrational and combative. Rather than providing a forum for him to proselytize, /. is likely to highlight his true nature as a buffoon in a very public way. If I were him, I'd be shitting my pants right about now, since I would know that every bullshit answer that I gave would be instantly mirrored all over the place. And it's tough to sue if you've been quoted correctly.

attrition.org

[manitee]

Mr Vranesevich:

Having read many accounts of your interactions with the staff of attrition.org, it seems to me that your claims against them are generally unproven and rash. Their rebuttals are always filled with detailed fact and systematic, step by step analysis of the topic at hand. Please clarify why you feel that attrition.org is such a dangerous force, yet you have neer been able to present HARD EVIDENCE to that point.


--
I live in the ocean

Re:attrition.org

[Deosyne]

Yet consistant attempts have been made to get his side of the story with backing facts by various media outlets, such as the Times, HNN, etc, but to no avail. JP's responses ALWAYS come back sounding like a politician's monologue, full of fluff with no real content. Therefore, I am not really sure what Slashdot is attempting to accomplish with this interview; I just can't accept that they would resort to tabloid-style journalism simply to generate traffic, particularly since they get plenty already. I guess I am just fed up with having someone whose signal-to-noise ratio borders on illegal constantly getting attention for no particular reason.

Deosyne

OK

[Rabbins]

How do you define your current role?

-and-

How do you see your role in the future?

Capital went where?

John;

Attrition and other sources have reported on you a great deal, and my question has to do with their reports.

Specifically; where the hell did your venture capital go, and how much did you *really* get? I have seen you claim in email to have recieved numbers ranging from $75,000 to $300,000 to continue AntiOnline's operation, and have seen NUMEROUS reports that AntiOnline has NO MONEY. So, where'd the money go, and how much was it honestly? You can answer honestly, right?

Slashdot no longer supported. Morons

[netmask5]

I once read slashdot. AFter seeing their promotions, whatever it may have been, that
little hyper text link to AO. I will no longer
read the site. You are helping one of the most
worthless sites on the Net. Run by someone who
many would classify as a criminal. A narc, and
a liar. Someone who puts up a worthless site,
has allegdly PAID people to hack things just
to get more hicks. Someone who is in bed with Carolyn Meinel, and a person who doesn't know
his ass from a hole in the ground. What a worthless piece of shit.

Re:Slashdot no longer supported. Morons

[Pretender]

No, I think it's in Slashdot's best interest as a journalistic medium to do this.

However, I think it's in Slashdot's _readers'_ best interest to utterly ignore this article if they think he's a fraud. Look into his past yourself (and don't necessarily take either him or his biggest detractors at face value) and determine if you think he needs more free publicity or not.

The best thing those of us who _are_ detractors can do is:
1. Don't ask questions under this article
2. Don't moderate any questions in this article up

Re:Slashdot no longer supported. Morons

[mochaone]

&lt plant tongue firmly in cheek &gt

I'm sure the slashdot community will miss you

&lt /plant tongue firmly in cheek &gt

Re:Slashdot no longer supported. Morons

[platypus]

I understand your feelings, I even have thought about doing a posting where I propose that nobody will pose question (I still think that would have been cool ;-)).
OTOH this is a chance for many - at least you and me - to see how mature slashdot really is. Slashdot is able to give this guy and the world a massive impression of how we see him.
And we even wrote for Jane's about cyber warfare, so we are a authority in this area ;-).

Re:Slashdot no longer supported. Morons

[Jeff+Mahoney]

I disagree.

I think that if readers have an opinion against JP - it should be expressed.

The problem with the "if you don't have anything nice to say" philosophy is that if all anyone says are nice things - then the truth may never get heard.

-Jeff

Re:Slashdot no longer supported. Morons

[Borealis]

I disagree. Ignoring him won't expose him to be a blithering idiot (if such is your aim). This is a perfect opportunity to allow JP to impale himself on one of the most public geek arenas the world has to offer.

If JP gives his typical type of responses then this will be the single most significant way to eliminate any shreds of reputation he has managed to cling to. As posted above this, there are now a lot of mainstream media folks who (sortof) pay attention to /. now. A single editorial in a mainstream mag could completely annihilate him.

Unlike some other things, I don't think network security is an area where any publicity is equivalent to good publicity. Bad publicity can definitely take him down. At the very least, it will spread his name as a crackpot far enough that ISPs won't take down competitors based on his word alone.

Re:Slashdot no longer supported. Morons

[Col.+Panic]

This feels like piling on the man with the ball at this point, but here goes.

/. is a *forum* for discussion. If you expect to like everything you read, stick your head back in the sand, e.g. don't read it. A prior response makes an excellent point - know thy enemy. The point of this article is not to get JP press, but to "Grill" him as his peers. This is how others in the know will determine how the guy responds (or doesn't) to incisive questioning.

I for one look forward to reading his answers. Note: I did not say *believing* his answers, just reading them.

Are you really as dumb as you look?

[Knight]

JP, I would love to hear you ramble on again about how Jericho is obsessed with you, and how packetstorm was threatening you sister, et al. But really, we all know that you just couldn't stand the competition from the security sites without VC backing, so lets cut to the chase: How do you explain numerous stories that appear on your site that were copied fully or in part from a different commercial news source without their permission, and without giving due credit? Don't deny it, it's pointless. I know you want to, but attrition.org has documented all of it. Also, how do you respond to allegations that you have committed Federal computer crimes, since, by your own admission, you have been in situations before where you could have stopped a crime and didn't? Isn't that a crime itself? I mean really, the only time you've ever had a report on anything less than a month old is when you reported on (cr|h)acks that you were suspected of taking part in. One last question: How does it make you feel to know that you destroyed the life work of a college student that was providing one of the most valuable online security resources (certainly better than another infamous web site) for free in his spare time for no other reason than it bothered you to lose traffic to it?

If you need to point-and-click to administer a machine,

here's one.

[jarv]

What, if anything has changed since the entire packetstorm debacle? How has this affected you? Have any policies of yours, be they personal or public changed since?

Completely and utterly digusting

[~spot]

Slashdot folks, you all should be ashamed of yourselves. Who is next on your interview list, Satan himself? JP is the biggest sellout & poser, seeking to elevate his name at any cost, be it hackers, crackers, or broken laws.
And then you don't even have the nerve to site the number one source of valid information about John. www.attrition.org
Total nonsense. Can't you guys find someone who does constructive/productive work in the industry, rather than a proven liar?
Interview Ken Williams instead, at least he's honest.
Again, i repeat. Blecch.

Re:Completely and utterly digusting

[ucblockhead]

Who is next on your interview list, Satan himself?

I don't know, that could be interesting, don't you think? I'd personally like to ask him what his plans are now that the Justice department appears to be about to restrain his biggest competition.

(That "Google" think had to have hurt...)

Re:Completely and utterly digusting

[mochaone]

You know Bill Gates won't sit down to an interview while engaged in an anti-trust trial.

Explanation of Packet Storm

[davidu]

Many of us in the hacker community (not cracker) used the Packet Storm security site for information and research. You had it shut down for some alleged things in the /jp directory. Explain to us why you called Stanford to shut it down rather than dealing with the maintainer. What did you accomplish by threatening to sue other than futher harm your image and remove any creditbilily you had?
-Davidu

Re:Explanation of Packet Storm

[sonoffreak]

Harvard not Stanford. Sorry to be anal.

Re:Explanation of Packet Storm

[mwalker]

CORRECTION
JP didn't call stanford, he called harvard.

harvard.edu provided the hosting until the false legal threats were issued.

fightin jp and keepin da facts straight,
-mwalker

Re:Explanation of Packet Storm

[John+Fulmer]

Many of us in the network security community (that is, those of us who actually make a living at it) find things like Packet Storm and attrition.org rather helpful at times as well.

On the other hand, I've never found anything of value at AntiOnline. Nothing. Nada.

While I don't really care for some of the attitudes and actions of the black hat community (the l0pht being one huge exception), I find AntiOnline's much, much worse. AntiOnline's goals seem to be more to harass people who may or may not be involved in questionable activities, rather than educate people about security and privacy issues, which is what I believe is the true purpose of a security professional.

And no, I never was a 'c00l hax0r d00d' either. :)

I personaly don't think that Mr. Vranesevich is qualified to act as a security professional, let alone as an 'expert'.

I have no questions that I would care to hear his answer on. In fact, when his article comes up, I would hope that no one reads it or comments on it. That would be the ultimate protest on Slashdot...

jf

Re:Explanation of Packet Storm

[davidu]

Heh, Harvard / Stanford, my bad.

I am not applying to either...
Lets here it For Claremont McKenna!

-Davidu

Re:Explanation of Packet Storm

[the_tsi]

I completely agree with you. I'm a network security professional who follows the cracking community at large just to know what's coming, and the only thing I've ever seen useful on AntiOnline was simply posted there from "Commong Knowledge": good password tips.

I hope that this interview goes belly up.

-Chris

Re:Explanation of Packet Storm

[scribble]

I don't want to sound picky or anything but and I didn't follow this very close, but I believe Packet Storm was hosted at harvard rather than stanford!! I guess it's close enough!

If I'm wrong my apologies.

"People call their mistakes experience and I have lots of experience!"

More information about the packetstorm situation

[mischief]

Those curious about the packetstorm situation may wish to look at: http://www.jya.com/kw070199.htm which is the original mail sent by the person who ran packetstorm.

--

AntiOnline

[NME]

There are a lot of security information sites on the net, of varying quality. Why should I read AntiOnline? I Suppose I'm wondering what you feel that you're adding/offering that makes you unique.

thanks

-nme!

Contributions

[platypus]

What were your most important works in the security related area, ie. posting to relevant(!) mailing lists (let's say bugtraq, ntbugtraq, RISK), articles in magazines, papers or lectures?

Re:Contributions

[SpinyNorman]

Here's an important article in Forbes! ;-)

Did you put on your asbestos vest deliberately?

[deefer]

How much of the criticism you have received at the hands of the online community do you think is deserved? Do you feel you have been hard done by? Or did you intentionally start stirring up a community that can sometimes disappear up it's own arse?
How real is your fear of reprisals? I mean, everything from fearing a wannabe scriptkiddie waiting in your alleyway with a stolen .45 magnum, all the way through to a cracker breaking into AntiOnline? Do you feel that the fact that AntiOnlines "uncracked" status proves your worth as a security expert? I love reading the "hack attempts on this site" section, BTW...

An honest suggestion...

[Wah]

...from a loyal /.'er

Don't send this guy a dang thing. Everything I have seen from both his side and those of his detractors has painted him as a sham and a joke. I really don't give a sh*t what he thinks, I know his opinions are biased and baseless. Don't taint what have been quality interviews with this tripe.

Re:An honest suggestion...

[homunq]

(The parent comment of this deserves to be modded up to 5)

If there really is a consensus that /. shouldn't interview this guy, I think you should have the guts to retract this interview. Then you'll need a new interviewee in a hurry. I humbly suggest that probably the quickest place to find a smart, willing, and interesting interviewee is to follow-up on a "science" story. Some quick suggestions, obviously biased towards my own discipline of Cognitive Science:

Any of the scientists in the book the third culture. I have a big problem with the philosophy of this book ("scientists have all the answers, and the latest old-boy's-club of self-styled iconoclasts is a new phenomenon in the history of mankind"), the fact remains that a lot of these guys make good interviewees, and love to hear themselves talk. Stephen Pinker is in this same category.

For a real iconoclast, Thomas Gold.

In my own field (how the mind and brain work - a topic I humbly feel to be interesting to most /.ers), George Lakoff has a lot of new stuff to say without succumbing to the context-free, sui generis mistakes of the Third Culture guys.

Dvorak Partnership?

[quonsar]

I was wondering if you had any plans to work with new security expert John Dvorak in the future? With your notoriety and John's media connections (not to mention his $40 firewall) it would seem to be a partnership guaranteed to strike fear into the hearts of evil h4x0r5 everywhere.

======
"Rex unto my cleeb, and thou shalt have everlasting blort." - Zorp 3:16

You = Moron

[Rabbins]

I once read slashdot. AFter seeing their promotions, whatever it may have been, that little hyper text link to AO. I will no longer read the site.

This way of thinking always pisses me off.
You have been reading slashdot for a whole week now?
Ever heard the phrase "Know thy enemy"!? The whole idea here is to know as much as you can, with view points from all sides. Let him speak for himself... then formulate your judgement.
Or, surround yourself in ignorance and go on getting pissed off.

Re:You = Moron

[netmask]

Nobody has been reading slashdot for very long,
it is a young site. I have known of it for
quite sometime, but never really read much
on it except for the past year or so. SO don't
even try and assume things, you are very bad at
it. I think it would have been in their best
interest to have NOT posted it. There are
intelligent people who read slashdot, but the
facts of the world are, there are more stupid
people out there than we know what to do with.
They will follow some idiots to the end of the world. If JP gains one single friend from slashdot
posting this, then it was a tragedy. I'm more
so familiar with JP then the majority of people.
I have worked with Attrition, and HNN on stories
and news about JP, and I was the one who featured
him on netcriminals.org and past out fliers at
defcon about him and how to shun him. Never once
giving the domain name for people to surf his web site, and click on his little banners, and add
to his statistics, so his so called funding companies can see that the site is doing so well.
Hell, if you really want to, go ahead and look at
the site, notice how anything that doens't run from a cron job, hasn't been modified since mid last week, and most of his sections haven't been touched for over a month, unless updated with a cron. Nobody is answering the phones there, it is a waste of time. Better to 100% forget. The media
makes everything now a days, the media spreads the word. If the media had never mentioned slashdot.org even one time, it certainly wouldn't
be as popular as it is today. Granted, the site
gets a lot of hits,a nd a lot of people found them
from links, but a good majority probably hit this
site for their first time from links from sites like wired, and other major news sites. ANyway,
I firmly believe that if you just never mention, don't speak and forget about a site, it will die.
Check out JP's stats tommorow, I bet they sky rocketed today.

Re:You = Moron

[deefer]

Couldn't have said it better myself. I always thought /. was a place for intelligent discussion, not mindless kneejerking and childish tantrums.


And I am still the geek who whipped your lily white arse in front of the entire school. I'm waiting for you by the schoolgates tonight...

Re:You = Moron

[smileyy]

Slashdot would only get half as many posts if you eliminated the mindless knee-jerking.

What a shame....

[FallLine]

It is a shame to see slashdot come to this, knowingly selecting highly inflamatory material with little to no redeeming value, for the sake of increasing banner revenues. I first noticed this with Katz, but now I'm seeing it with JP as well. Both are nothing but cheap hacks. It would be a waste of words to describe how and why, I believe the "editors" know full well what they're doing.

I've said it before, and i'll say it again; I believe slashdot may very well hurt themselves financially in the long run. Though these "articles" may create short term revenues, they detract from the site. I have little doubt that the real secret to slashdot is intelligent discussion. Katz and JP simply tear it apart--leading to flame and dogma. The people who participate vigorously in such discussions tend to be younger, immature, etc. People, such as myself, on the other hand, only have so much tolerance for this kind of behavior. When the more intelligent people (better contributors) leave, the heart and soul of slashdot will too. With out this certain intellectual vitality, slashdot will rapidly degenerate.

PS: I said I wouldn't, but I changed my mind...I knew JP a couple years ago on undernet (IRC) in #cha0s, and other such channels. He was, and always will be a clueless idiot. He is a horrible writer. He doesn't know the first thing about computer security. What he is, is an opportunist, and a not very intelligent one at that. The reason he is "popular", if you could call it that, is that he was in the right place at the right time. Namely, he acted as a conduit for the media when "Analyzer" (the moronic israeli hacker) did his thing. Since that time, he's been trying desperately to sensationalize everything and purporting himself to be an expert. In short, he's a hack.

Unprovoked Attacks on Other Security Experts

[Kintanon]

What is the basis for your attacks on security Experts such as Attrition.org?

To Clarify the question:
Why do you proclaim them to be 'dangerous hackers' while they do essentially the same thing you claim to do, except that they do so better, faster, and more professionally.

Kintanon

15 Minutes...

[RobbieW]

John,

After looking at your website, it's obvious that you've learned a lot from Microsoft's marketing over the years.

Do you think you will ever be ruled a monopoly and if so will you try to sue the judge?

Taco, Hemos etc., this is real disapointing. If you need a list of interviews to ask for, let me give you a few:

Donald Knuth, Bill Joy, Steve Wozniak, Alan Cox, George Patton, Mickey Mouse, Al Gore, Tipper Gore, Democrat Sponsored Tax Reduction

...Oops! A couple of these would be a problem wouldn't they? However, they are all more plausible than this one!

An armed society is a polite society. Manners are good when one may have to back up his acts with his life.

Re:15 Minutes...

[mcc]

Alan Cox has been interviewed already in this forum.. In fact if i remember correctly he was the first subject of a /. interview. I'm pretty sure he was at least one of the earliest.

Yes, i'm being nitpicky and anal. But there are worse things to be (for example, redundant).

Re:15 Minutes...

[RobbieW]

Yes, i'm being nitpicky and anal. But there are worse things to be (for example, redundant).

Yep, you're right. I remember now. What about Larry Wall, Linus Torvalds or the Director of the NSA! maybe some of these were already done, but I don't remember any of them!
In any case, a /. interview of JP is as bad as MTV's hacker story!

An armed society is a polite society. Manners are good when one may have to back up his acts with his life.

Re:15 Minutes...

[slashdot-me]

>Yes, i'm being nitpicky and anal. But there are worse things to be (for example, redundant).

I'd rather hear something good twice than something worthless once. That's why I didn't preview...

Question for JP:

[jcurious]

How successful have people been at attacking the happyhacker and linuxppc servers that you are letting people attack and are you going to provide session logs of intresting attempts?

?

[mattc]

Why did you deliberately block links from Slashdot, HNN, and any other site who criticized you during the closure of Packetstorm?

another question:

[jcurious]

What do you attempt to achive by offering a large archive of virus source code?

Re:AntiOnline (new AO slogan)

[netmask]

"We do for the web, what tabloids do for
the super market check out lane"

Sigh...

[Stiletto]

I think it's a shame Slashdot is sinking to such depths as to interview this character.

Who's next on the interview list? The unibomber?

Re:? --- Good Question

[Kintanon]

I remember visiting AntiOnline a few days after the packetstorm incident by following a link from slashdot, and being bounced with a message that read something like 'The page you are being refered by is a known hacker website...'
Can you please explain how you classified Slashdot, a site which reports news, does interviews, and encourages discussion as a Hacker website?

Kintanon

Better than Questions...

[zi0n]

Lets ditch the questions and gather the top 10-15 people that JP has fscked the worst so that they may take turns kicking him in the jimmy (if he even has one). Hope this d00d has a fire extinguisher on hand..

Its more than worthwhile to me...

[syntax]

Maybe most people dont get a kick out of it, but I personally see it as one of the better parts I've seen of AntiOnline/AntiCode.. Redhat 5.2 ftpd exploit? I could really care less, putting that up only adds to the amount of clueless kids running around there attacking anyone they can, including dialup users. However, The Virii archives seem to add a bit of history to it. I've spent hours before browsing through, looking at some of the more historical Virii that raped newspaper headlines. At work one time half the computers around had gotten a virus that the antivirus said couldn't be removed; I check the archives, analyzed it (which is VERY fun if you know assembly.. (Tutorial). I dont see many people actually going out and compiling them, so just consider them to be historical documentation like text files.

HFG

[netmask]

Here is a valid question:

After the statute of limitations is over for
the HFG hacks, will you finally admit to being
HFG?

Also, once the statute of limitations is over
for the sites you paid people to hack, will you
admit to those? Is this your companies life long
plan, is to sit being poor for 8 years, and then
make these announcements in the mid 200x era,
and then get a ton of hits from those
announcements? That is a BRILLIANT plan. Wow,
you are far more intelligent than I had thought!

Also, what exactly do you have to say about
your interferance with packet storm? Did
you find them to be a big competition with
you, so you figured you would cry and moan
and threaten until they were shut down?

What do you plan to do when a company
with money gets sick of your girlish
whining and pissing, and sinks you
like Jimmy Hoffa?

Could you please reply to every single thing
that attrition.org says on their dedicated
section to you, and try to prove them wrong?
(with as little lying as possible if you could).

Re:HFG

[burrows]

When the statute of limitations comes into effect for the HFG hacks, the members may or may not reveal themselves. At that point, will you and JP and everyone else stop making assumptions about the identities of these hackers? I have noted your sarcasm, I just thought it a bit reckless.

Re:HFG

[netmask]

Here are a couple of definitions I feel I'd
like to share:

> Assumption \As*sump"tion\ (?; 215), n. [OE. assumpcioun a taking
> up into heaven, L. assumptio a taking, fr. assumere: cf. F.
> assomption. See {Assume}.]
> 1. The act of assuming, or taking to or upon one's self; the
> act of taking up or adopting.
> The assumption of authority. --Whewell.


And> Accusation \Ac`cu*sa"tion\, n. [OF. acusation, F. accusation, L.
> accusatio, fr. accusare. See {Accuse}.]
> 1. The act of accusing or charging with a crime or with a
> lighter offense.

Re:HFG

[mcc]

having read the HFG hack and glanced over antionline.org, i _seriously_ doubt they could have come from the same person. The text of the HFG hack was clever, funny, and all around a great read. No one capable of writing that would have come up with what i see on antionline.org.

On the other hand, you could still be right-- maybe after the statute of limitations he _will_ "admit" to being HFG as one last dying pr stunt, even though he actually _wasn't_ HFG.

-mcc-baka
believe what you want

Re:HFG

[burrows]

OK, just to clarify this ridiculous banter to the point at which we all agree that it is pointless and decide to just go back to straight bashing JP, JP != HFG HFG == HFG leave alone, damnit, i am laughing too hard to type...

Re:HFG

[burrows]

assumption (-smpshn) n. 1.The act of taking to or upon oneself: assumption of an obligation. 2.The act of taking over: assumption of command. 3.The act of taking for granted: assumption of a false theory. 4.Something taken for granted or accepted as true without proof; a supposition: a valid assumption. 5.Presumption; arrogance. 6.Logic. A minor premise. jackass (jks) n. 1.A male ass or donkey. 2.A foolish or stupid person; a blockhead: "You've acted like an irrational jackass and it's time you stopped" (Margaret Truman). -- or alternately -- jackass \Jack"ass`\, n. [2d jack + ass.] 1. The male ass; a donkey. 2. A conceited dolt; a perverse blockhead.

Right on!

[Signal+11]

I agree with you completely. I couldn't find a more deserving person than JV for being ignored - he sensationalizes, goes trolling, frequently and intentionally misrepresents key issues, and has even made personal slams against people who question him. This guy needs to learn what "journalistic integrity" means.

I say we flat out ignore him - he's of no value to the community. The only thing he does is stir up trouble and act as the town provocateur.

--

Re:Right on!

[mochaone]

he sensationalizes, goes trolling, frequently and intentionally misrepresents key issues, and has even made personal slams against people who question him.

Hmmm. Some would say that your comment does the same exact thing.

I say we flat out ignore him - he's of no value to the community

What community are you talking about? The slashdot community? There is something out there beyond slashdot. Whether you disagree with him or not, he has made a name for himself. If you have a beef with him, why don't you ask a question or tell him what your problem is. Ignoring someone because you abhor them accomplishes nothing.

Re:Right on!

[Signal+11]

Hmmm. Some would say that your comment does the same exact thing.

Yes, in the same fashion as talking about rape makes me a rapist...

What community are you talking about? The slashdot community?

No. I'm referring to the hacker / security communities. Slashdot readership doesn't count as it's own community...

--

Re:Right on!

[mochaone]

Signal 11 trolled:

No. I'm referring to the hacker / security communities. Slashdot readership doesn't count as it's own community...

Surely, you know that is ridiculous. There are a couple thousand people who feel otherwise. I assume you only said that to incite others to comment. I guess I'm the first to bite.

Re:Right on!

[Signal+11]

Tomorrow slashdot servers explode, sending bit rubble and debris far into the ATM clouds. Several hours later Rob Malda, in his boxers, logs in and discovers the servers are gone.

Has the community vanished without a trace?

No. That's because slashdot isn't a community - it's a website. It just happens that alot of people read it each day, and communicate with each other using it. Would it be a loss if this happens? Yup. I for one like to boast about my high karma on /. *g* But slashdot is not a community in and of itself. Understand the distinction I'm making.

--

Re:Right on!

[mochaone]

Would you be so kind as to point me to the hacker/security community then? I would very much like to charter a bus there to see this wonderful civilization.

</sarcasm mode on>

Now for a touch of reality.

Here is a definition of community, as found on Merriam Webster's site

• a body of persons of common and especially professional interests scattered through a larger society <the academic (try substituting slashdot here Signall 11) community>

Instead of bragging about your high karma (face it, who cares), why don't you try opening your mind up?

Re:Right on!

[Signal+11]

Just because you quoted Webster's doesn't imply your position is any more tenable than it was an hour ago. The legal community will not disintegrate if Westlaw disappeared, although it's an invaluable research tool for lawyers. The chemist community will not vanish if funding for the next particle accelerator is denied. The quantum physicists only exist when you are directly observing them, so their existance is debatable.

You're arguing over semantics - there is no 'slashdot community', because slashdot is a website. There is no 'jennicam community', although it's a popular site. There is no 'cnn community', although that is a heavily-traffic'd site.

As to your crack that I should 'open my mind up', considering that you a) don't know me and b) haven't cited anything beyond this article to support your position (isolated cases aren't representative of the whole), I find that remark ludicrous in the extreme. Taking personal pot-shots at me isn't going to strengthen your position, nor does it make you look good. About you calling me a troll - it seems like a case of the kettle calling the pot black.

I won't be replying to any further posts on this topic - it's a waste of bandwidth and time. Goodbye.

--

Re:Right on!

[mochaone]

You're arguing over semantics - there is no 'slashdot community', because slashdot is a website. There is no 'jennicam community', although it's a popular site. There is no 'cnn community', although that is a heavily-traffic'd site.

My, my. Isn't this, to use your colloquialism, the pot calling the kettle black? You start this whole thread rolling by telling me what a community is or isn't, disregarding that community has several meanings. And now I'm engaging in semantics? I'm sorry, I didn't know there was a universal understanding of the word community.

When I refer to slashdot as a community, I am using community in the context of neighborhood, a place to hang out, in the same vein that people refer to AOL as a community. A lot of people view slashdot as the place to be on the internet. When I wake up in the morning, rather than putting on tv, I pop into slashdot to see if there are any interesting articles, check on whether Cliff has posted my Ask Slashdot question (still waiting...) and to see if you and Kish are playing footsie (joke...relax). I'm sure there are others who view slashdot in the same manner.

You're right. If Rob's server blew up, slashdot probably wouldn't exist...temporarily. The problem with this analogy is that you assume that when I refer to slashdot that I am referring to what we see when we pull it up on our browser. Actually, what I'm referring to is is what slashdot embodies. It's something that a lot of people have desired for a long time; a place where we can express our views and hear others like us too; a place that doesn't patronize to us. A virtual community, if you will. Slashdot is really just the domain name for that spirit.

So, to pursue your analogy further, if Rob's servers blew up one day, despite the terrible angst we'd suffer, we would wait and hope for Rob to set up shop again and get to back to the business of providing an informing and entertaining forum for us. If for some reason Rob wasn't able to get it going again, I betcha someone, somewhere would revive it. You see, slashdot is not really Rob's baby anymore. It belongs to each of us. In the same way that the Amiga community or the Atari 2600 community is still out there kicking, the slashdot community would find a way too.

That's what I mean when I say community. I hope that explains things for you.

I won't be replying to any further posts on this topic - it's a waste of bandwidth and time. Goodbye.

I think it's time to put this thread to bed too, but I hope you at least read it so you know where I'm coming from.

Rags to Trash

[mTor]

JP was a wannabe hacker and he managed to gain a lot of access to many hacker groups by providing the groups with publicity. He 'called' them (us) a 'friend'. Actually, what he was doing was collecting information on 'friends' and putting it into a database of which FBI and NSA would be proud. He now sells this information he collected to law enforcement officers.

Questions for JP:

1) Why did you betray your 'friends'?
2) How can you now be trusted?
3) How do you feel about spending this dirty money?
4) What were your charity donations for 1998 tax year?

question

[sonoffreak]

Why did you decide to let Slashdot interview you? How did the response you got compare to what you expected?

JP - One quick one if you have time:

[toomuchcoffeeman]

Why are you *such* an *arsehole*???

Great idea

[platypus]

Interview Ken Williams instead, at least he's honest.
Just to add some dB to your voice.
Yes, Ken Williams would be great! I would be very interested in how he came to make packetstorm and what he does now...

my question

[Ken+Williams]

Which iMac color would you recommend for aspiring "security enthusiasts"?

--

Re:my question

[DoXaVG]

I'm pretty sure that answer would be pink Ken.

--Dox

Re:my question

[Ken+Williams]

wonder if it'd be the same color as the one in the picture here: http://www.antionline.com/information/facilities/
--

Re:my question

[Accipiter]

I am SO glad I wasn't the only one who noticed that. I saw that pic a few months back and laughed my ass off. I also posted the URL in #HackPhreak.

Also, I noticed it's impossible to wander through antionline without tripping over bad spelling. Look at the first paragraph on that very same page.

The AntiOnline offices are located in the beautyful and rural...

So much for professionalism.

By the way, is it me, or are those computer tables converted exercise bikes?

-- Give him Head? Be a Beacon?

Re:my question

[Filgy]

I'm guessing the reply to that question would be "We chose iMac's as our office machines for their nice compact size." Since everything that comes out of JP's mouth is complete BS I would be guessing the real answer is "We like to play with the cool little iMac mice and the pretty point and click gui keeps us busy for hours."

Re:my question

[FugaziMan]

Nothing worse than buble furniture in the hallway,
an iMac in your sisters room,
and ganking your fat parents excercise bikes
cause you are too poor to buy chairs

What happened to Packet Storm?

[RelliK]

I seem to recall the story on /. that Packet Storm is now hosted somewhere else and they were able to retrieve all the data. Can somebody confirm/deny that please?

Re:What happened to Packet Storm?

[GeorgeH]

http://packetstorm.securify.com/

You won't find a /jp directory, though.

--

Re:What happened to Packet Storm?

[LiNT_]

Yes, packetstorm did retrieve all of the information that was stored on the Harvard server. The new packetstorm is run by the Kroll-O'Gara security group and can be found at: http://www.packetstorm.securify.com

JP Who?

[borzwazie]

Justifying this self-absorbed braggart, who is to "computer security" what Microsoft is to "innovative computing", with open questions about his shameless practices is an affront to the readers and members of Slashdot.

Doubtless some of the members of Attrition and some contributers to Packetstorm are not without blame.

These people never tried to stop the free flow of information about computer security. For good or bad, they passed (and still pass, thank you) information about computer security for everyone.

JP apparently feels that to get security information, you have to play the high-school popularity games of "I'm in the gang. Don't ask us if you're not" when he himself is at best a collecter of script kiddie attacks.

Gee, JP, where did you get your information? Did you (GASP!) HACK something? Now, was it YOUR system?

Really, Slashdot, I thought better of you.

Why is everyone complaining?

[mischief]

OK, so everyone hates JP. But this is a chance to ask him some questions to his face - Slashdot is giving you the opportunity to quiz your nemesis on all those things that are bugging you - why boycott slashdot for that?!?

--

This is sad

[scru]

Giving this idiot a soapbox to ramble on will do no good in the long run. No matter how poorly he responds to the legitimate questions at hand, he will undoubtedly twist the truth about this interview in his favor on his garbage website. Knowing him he has already started seeking legal action against those here that have posted less than appealing comments about him. By granting him an interview I have lost some respect for slashdot.

Why are you legitimating this kook?

[Daverz]

As in subject.

10 questions

[Col.+Klink+(retired)]

I've got a list of ALL 10 questions every /.er wants to know:

John,

1) When will you go away?
2) Can you make it any sooner?
3) What can we, as a community, do to speed your departure?
4) When you leave, will you promise not to return?
5) Are you still here?
6) You haven't left yet?
7) Go.
8) Leave.
9) Scram.
10) Can you take Katz with you?

Question for JP?

[Lord+Kano]

JP, do you think of yourself as the IT equivalent to Bill Clinton or Bill Gates?

After all, people who are entrenched in IT Security despise you, however the clueless dimwits in the IT society respect and even like you.

LK

The meaning of "Interview"

[NME]

I'm seeing a lot of comments that end up not actually being questions. I realize that JP is controversial, but that doesn't change the fact that this is a Q&A session. How smart do you think posting a comment(offtopic! Whatever happened to impartial moderation?) about the declining standards of Slashdot makes you look? The answer is : not very. You end up looking more than a little childish in an I'm-taking-my-ball-and-going-home sort of way. I don't think I need any help form the likes o' you in deciding who the clueless morons of the world are, and I'll decide what JP is AFTER he answers.

I mean, like, duh!

-nme!

Re:The meaning of "Interview"

[NME]

Although I could use some help proofreading. Any takers?

-nme!

Re:The meaning of "Interview"

[NME]

*sigh*

I've read all the stuff that attrition has on him. I've read the Pennenburg (sp?) article. So I've seen him involved in petty squabbling. I was curious to see how he would respond to questions posed by a community with a high clued to unclued ratio. Unfortunatley the maturity ratio looks a little low today. It's a lot easier to say "JP sucks, and now so does Slashdot" and throw in a link to attrition than to ask an intelligent question. For chrissakes, this didn't even spark a decent discussion about network security (which I would have enjoyed, personally).

oh well.


-nme!

Death by ignorance

[nevets]

Actually, if you read as much about him, from his sources AND the sources against him, people can determine his character for themselves. I say, lets hear his side, and then if he can't produce anything to give himself credit, then ignore him. Obviously, he has some power to cause this much fuss, and just ignoring him won't make him go away. Listen, and then critise. If he has no basis, then he shall crumble.

I always believed that you can't hide your true self. It always comes out in the end. If you are fake, then it will eventually show. If you are honest and have integrity, then you shall stand strong.

Let him determine his own fate. Let him speak, then let him have it.

Steven Rostedt

Re:Death by ignorance

[Pretender]

I wasn't speaking to all Slashdot readers, only those who think he's a fraud, or define themselves as his detractors.

But as we can see from the comments on this article, a lot of people resent the free publicity he's getting from this, and the only reaction we as detractors can have in the face of it is silence - anything else serves his purpose.

People who want to know what he will say about something should ask questions. But I am merely pointing out that those who already have their minds made up against him are best served by not contributing to the discussion. He's going to get a very loud opportunity to answer them at the top of the column on Friday, and they will get a meek, moderatable opportunity to continue the discussion underneath...doesn't sound like a winning proposition to me. Not saying it's not fair, just saying that his opponents should consider this. If someone wants a chance to judge him by how he responds, not having done so already, then by all means ask away.

Re:Death by ignorance

[netmask]

If everyone ignored him, he would go away.
His site wouldn't get hits, he'd be out
of cash and funding, and poof, he is some stupid
kid again saying "Wow.. Sucks that thousands
of people would laugh if I died in a terrible
plane crash". Everyone already knows he is a fake,
and nobody gives him credit anyway. He doesn't
offer any services that will get his site anywhere. THe only things making him money is us
going to his site.

Re:Death by ignorance

[nevets]

I wouldn't post replies to accusations on my web site. Here's his opportunity to do it now. I'm not defending him, I just haven't looked at his web site, until now. My only view of him is what I have read on /. He's just a curiosity to me, and not much more.

If every one didn't use MS, and used Linux the world would be a better place? Maybe, but what makes the world great is that everyone is different and has their own opinions. No, the world may not be a better place if everyone did use Linux, and probably would be a little boring.

Rob, announced this a week ago, so we had lots of time to complain about this interview. If you did, then just let it go.

All the talk of this guy has made me interested in hearing what he has to say. So if you did ignore him in the first place, then I wouldn't care. But because he makes most everyone on /. go into a furry when his name is mentioned. I want to know "why?".

Steven Rostedt

I'll throw in with this one..

[Kitsune+Sushi]

Apathy truly is the coldest emotion. Nothing can freeze someone as cold as ignoring them. Completely. Utterly.

I am annoyed, however, that Signal 11 over there used a term to describe this tool that he tried applying to me once (as seen here.. well the reply to that, to be precise). Grr. ;)

Re:I'll throw in with this one..

[Signal+11]

Yes, well... that was in jest, as you no doubt guessed. This use, however, is serious.

--

Is something wrong with their page?

[mrsalty]

It appears to me that some malicious Hacker has compromised the AntiOnline site and removed all useful information that it may have once contained. All I found upon visiting in their page were links to other pages and self gratifying articles about how good they are at whatever it is they do.

Packet Storm's been back a while.

[J.+FoxGlov]

It's been open for two months now. http://slashdot.org/article.pl?sid=99/09/22/086251 &mode=thread Here's the new site: http://www.securify.com/packetstorm/ The new host is security firm Kroll-O'Gara, at http://www.securify.com/ I really wish a href tags would work for me again. J.

Me? Quiet? HA!

[Accipiter]

Ok, normally I'll sit back and watch the interviews, maybe ask a question if I have an interest in what is being discussed. Also, let me take the time to say that I am a longtime reader of Slashdot, and it is easily my favorite website on the internet.

But John Vranesevich?

He is arguably the most despised figure in the h(cr)acker community, with Carolyn Meinel neck and neck. Both of them follow the same ideals and public image. What's that? Being a FAKE. Vranesevich has shown many many times that he has absolutely no clue about real computer security, and has been proven beyond a reasonable doubt in my mind that he goes to disgusting lengths to get a story, i.e.: "Hey, here's some cash. Hack that site, and let me cover it." (Attrition's site has remarkable backing for this theory.)

What's more, Vranesevich absolutely cannot stand being criticized. Any site which puts up content that criticizes, parodies, or shows Vranesevich to be a fraud, he throws a fit, cries, and threatens legal action. Attrition, Innerpulse, PacketStorm all have received threats. (At one point, Slashdot ran a less-than-flattering story about him, and I E-Mailed CmdrTaco letting him know that he quite possibly might get possible legal action from JP. (Nothing happened, but everyone knew it could have.)

You may be wondering how I know all of this. Well, a long long time ago, JP was an operator in a very large IRC channel on undernet. I happened to be an op too. The difference is, I still am. He knows I know him, as does everyone in the channel. We knew him when he was a small time loser. He's still a loser, but now just big-time.

Which is why I'm puzzled, amazed, and quite frankly disappointed that Slashdot chose him for an interview. He's not at all insightful, and can't offer any kind of intelligence to this forum.

-- Give him Head? Be a Beacon?

Re:Me? Quiet? HA!

[mochaone]

He's not at all insightful, and can't offer any kind of intelligence to this forum.

What if there are people reading this forum for the first time who've never heard of JP? Do you think it's a waste of their time to find out who this guy is and why he is so controversial? Or do you think he should just take your word and make up his mind the easy, lazy way?

Re:Me? Quiet? HA!

[psaltes]

You make good points regarding vranesevich. In fact, it seems to me that its mostly posts like yours that are being moderated up, and the few questions that I've seen moderated up are fairly hostile. The guys who run /. seem to me to be fairly smart; do you think they didn't expect this to happen? In fact, I'd say they were counting onn it.

Re:Me? Quiet? HA!

[BigDaddyJ]

What if there are people reading this forum for the first time who've never heard of JP? Do you think it's a waste of their time to find out who this guy is and why he is so controversial? Or do you think he should just take your word and make up his mind the easy, lazy way?

Actually, a majority of slashdotters would not hesitate to say yes to your question.

A good way to learn about him is to read the previous Slashdot articles on him, Antionline, Attrition.org, and Packet Storm.

What particularly surprises ME is that he is willing to submit this interview. Perhaps he's trying to improve his image among the Slashdot crowd?

--bdj

2 questions

[WH]

How do you respond to allegations that the FBI is investigating your knowledge of attacks before they happened and the accusations by some hackers who performed said attacks that you paid them or otherwise coerced them to do it in order to have coverage for your website?

Why do you feel that sites containing satirical humor based antionline are not protected by law and therefore open to your threats of legal action?

why is /. contributing to yellow journalism?

[Mad+Hatter]

I don't see what anyone would want to hear from JP as it would be about as honest as the rest of his crap. I am really disappointed to see /. even recognizing this individual's existence. At this point *any* publicity is good for his business, it's not like anything on /. can damage his reputation. Go ahead and moderate this to flamebait or troll, but I felt the need to say it.

"Trouble is, just because it's obvious doesn't mean it's true"

Mista JP

[J.+FoxGlov]

How do you respond to accusations that you routinely modify quotes (as with Ken Williams,) claim associations with major entities (like NASA) who later tell other sites they never had anything to do with you...

Eh, skip it. Assuming any of the "atrocities" leveled at you are true, why would you try them? What possible benefit could there be to try and deceive people on the Internet, where information is rarely more than a few clicks away?

J.

attrition

[Hard_Code]

http://www.attrition.org/negation/
http://www.attrition.org/negation/index2.html
http://www.attrition.org/negation/links.html
http://www.attrition.org/negation/www/tech.01.ht ml

Can't find the article where JP confuses a nuclear plant in Israel with one in India. That was funny...

What are your credentials?

[for(;;);]

What CS degrees do you have? For how many years have you worked as an administrator/programmer? Under whom did you work, and can they vouch for your expertise?
Doctors amputate Turkish earthquake survivor's arm [This story contains video]

here it is

[Hard_Code]

found it.

http://www.reznor.com/news/cwd0899.html

I'm saving this one ;)

Make your own decision: - URLs FYI

[penfold]

I've kept one lazy Eye on the subject at hand. While I could spout my beliefs, I would instead like to give a listing of places to visit so you could make up your own mind. A good portion of what is out there is negative. JP has made a few too many enemies. And those enemies are quite vocal. OK, I will spout a little bit. I think most of what he has done is juvenile and a bit underhanded. However, I've never really heard his side of the story. JP tends to hurl inflammatory remarks towards his accusers instead of actually debating the subject. Anyhoo:

http://www.attrition.org/negation/

http://kuruption.cha0s.org/jp/jp.html

http://www.forbes.com/columnists/penenberg/1999/ 0927.htm

http://www.antioffline.com

http://www.antionline.com

http://www.happyhacker.org

Try running a query on HNN's news archives:

http://www.hackernews.com/cgi-bin/htsearch?confi g=&restrict=&exclude=&method=and&words=ant ionline

Try specific queries with AO and certain News Orgs:

http://www.altavista.com/cgi-bin/query?pg=q&sc=o n&q=%2Bantionline+%2Burl%3Amsnbc.com&kl=XX &stype=stext

http://www.altavista.com/cgi-bin/query?sc=on&q=% 2Bantionline+%2Burl%3Awired.com&kl=XX&pg=q

Search Altavista for the keyword Antionline, but exclude any from that domain:

http://www.altavista.com/cgi-bin/query?sc=on&q=% 2Bantionline+-url%3Aantionline.com&kl=XX&p g=q

I'm sure there is more, but I cannot think of any off hand.

Grappling with Responsibility

[burrows]

In a recent article on Antionline entitled "Can You Trust Them?" you discuss the responsibilities of major security firms to their clients.One of your concerns is that these major companies (well, you only name one) sometimes keep contacts with known malicious hackers. As you yourself have demonstrated in the past, those responsible for bringing security-related information to the public often speak to known malicious hackers to get the inside story. How do you feel the need to verify sources differs for the press and security professionals? Where should security professionals go to get the inside story? The press? Where do editorials fit into the search for trustworthy security information? Please outline the differences in responsibility between press and security professionals.

NYT == FUD

[WHiTe+VaMPiRe]

You have a link to the New York Times 'report,' which is a bunch of FUD, yet you do not link the Forbes article, which is more subjective and has a generally better perspective. That is rather lacking.

At the very least, I would have linked them both, to give a more complete perspective. I would not consider OSAll's 'boycott AntiOnline campaign' a good comparison, in all honesty.

Perhaps you were just not aware of the Forbes article. (I forget whether you reported it in the past.) If that is the case, you are forgiven.

Please take a moment to read the Forbes article if you are truly interested in this subject. It is available at: http://www.forbes.com/columnists/penenberg/1999/09 27.htm

Regards,

WHiTe VaMPiRe\Rem

"AntiOnline"

[Hard_Code]

In your prescient wisdom were you somehow foreshadowing becoming the bane of the hacker and internet community when you came up with "AntiOnline" as the name for your site?

Anti-Anti-Anti-Online

[Hard_Code]

Are the rumors that you will be spinning off a sister site called Anti-Anti-Anti-Online to dispell the malicious accusations and deprecations of your obviously magnanimous professionalism and intellect and to further bolster the image of Anti-Online and your integrity as a computer-security-expect-guru-enthusiast, true?

top 10 interviews i'd rather see

[Ken+Williams]

yes, i have already read interviews recently on most of these people, but the interviews were very good and/or entertaining and i'd like to see more.

(in no particular order)

1. Fyodor, aka CyberPsychotic (insecure.org)
2. anybody from cDc (cultdeadcow.com)
3. anybody from L0pht Heavy Industries (l0pht.com)
4. Silicon Toad (Infinity Void, hackers.com)
5. Brian Martin, aka Jericho, aka cult_hero (Attrition.org)
6. Netmask (mindsec.com, 303.org)
7. Marcus Ranum (NFR.com)
8. John Young, of Cryptome fame (jya.com)
9. Aleph1, of BUGTRAQ (securityfocus.com)
10. Tim May


Bonus interviews:
any FBI agent
any NSA employee
any CIA operative
Hemos
--

Re:top 10 interviews i'd rather see

[DoXaVG]

No kidding! Why on earth is /. giving JP the time of day for an interview? What kind of worthwhile information can we expect to see from such an interview? Does this mean that we won't see interviews from people such as Alan Cox, Theo DeRaadt, or any other number of respectable people because /. has decided to lower their interview standards? I'd consider reading this for a laugh, but I've get enough email from losers that makes me laugh, I don't need to go searching for it too!

--Dox

*Grill* him?

[Evangelion]

You mean we get to clean, fillet and fry him up?

Cool!

Although I imagine he would taste largely of ***hole.

Disappointed

[quux26]

Seeing slashdot contribute to the fame of such a character just really disgusts me.

There are few things that really rankle me on slashdot - even Microsoft BS I can take in stride. But I have to strongly back akmed on this one. JP is a pariah and if he deserves anything outside of being ignored, it's a lawsuit.

I'm really disappointed with Slashdot.

My .02
Quux26

Serious questions that aren't insulting

[orz]

Most posts so far are either complaints about the interview or questions so insulting it would make /. look bad to ask them. This post is a list of the most serious questions asked so far, followed by a few of my own (I know nothing about security):

by NME

There are a lot of security information sites on the net, of varying quality. Why should I read AntiOnline? I suppose I'm wondering what you feel that you're adding/offering that makes you unique.

by mochaone

Why are you hated so damn much and do you care?

by Rabbins

How do you define your current role? -and- How do you see your role in the future?

by platypus

What were your most important works in the security related area, ie. posting to relevant(!) mailing lists (let's say bugtraq, ntbugtraq, RISK), articles in magazines, papers or lectures?

by Kintanon

What is the basis for your attacks on security experts such as Attrition.org?

by imac.usr

What's your opinion on the security of wireless standards like 802.11? Are devices like the AirPort secure enough, and if so, for how long?

Additional question of my own:

/.s attitude towards you has been universally negative, and your attitude towards slashdot has also been extemely negative (I seem to recall some claims about being a den of hackers, and blocking viewers from /.). So why are you willing to be interviewed, and why do you think /. is willing to do the interview?

Why are you so law-suit happy with your detractors and rivals? A lot of people have critized you for this, from fellow security sites to Forbes magazine. How does it help you (if it does)? If it doesn't help you then why do you do it?

Top Questions For Other Villified People

[mochaone]

Attilla The Huh: Elephants...over mountains...why?

Hitler: Why not just go with a goatee?

Satan: How did you get Bill Gates' mom to mate with a jackal?

Sadaam Hussein: Don't you think berets are just a little too French, if you know what I mean?

Newt Gingrich: How does it feel to serve divorce papers to your wife while she's dying of cancer?

Re:Top Questions For Other Villified People

[DoomHaven]

Stimpy, you eediot! It was *Hannibal* with the elephants, not Attilla! You know, those little Rome-Carthagian War *things*? Hannibal was a brilliant strategist. However, Attilla was an mean ol' Hun. But chump change to Genghis Khan. Now *their* was a conqueror....

Katz

[Hard_Code]

"Katz and JP simply tear it apart--leading to flame and dogma."

A lot of people like to take pot shots at Katz because it's easy. Sure Katz is often sensational and promotional...he can't escape his journalistic roots...but at least he /sparks/ discussion on issues. You have to credit him for that. He's out of his environment but willing to try and learn. To me that is the most redeeming quality in anybody. I think with even the most wrongheaded or overdone articles, Katz adds value to Slashdot. Nobody needs to make personal attacks on him. If he didn't care he could abandon Slashdot any time he wanted.

On the other hand, I think JP adds no value to anything. In fact, I think the net value of the system would increase if AntiOnline and JP were eliminated.

Re:Katz

[kevlar]

Nobody is making personal attacks on him. We make personal attacks on his work and the way he does it.

Its obvious that /. wants to invoke discussion of certain topics. They have two options. They can post a comment "blah blah lets talk about Collombine" in which case nobody would post anything, OR they could have Katz whipp up one of his pseudo conspriacy/controversial "articles" and induce discussion by everyone, even those who blatently see through him and his crappy articles.

The fact isn't that Katz writes poorly and is generally out of touch with the /. society, its that Slashdot and Katz alike are doing this solely for the sake of profit and completely disregarding what their users like. The result is that if they keep this going, in 6 months slashdot will have very, very little intellectual user base, and they'll be supporting themselves off hype and conspiratorialists (if thats even a freaking word).

Re:Katz

[gad_zuki!]

I haven't seen one worthwhile point Katz has made that wasn't made 100,000 times by comments posted by /. readers. His work is overly sensational and mainly keeps /. Jr's posting either "You suck," or "Society sucks." What he does do well is bring in banner revenue.

Re:Good for Slashdot!

[n3m0s]

maybe ... i see the point that it's good of slashdot to hang it out there for our opinions and input.
but ...
hosting him only admits that Slashdot thinks he's got *some* credibility. What would you think of i.e. the New York Times (just an example of a major publication) if they gave an interview to the head of the KKK (random example of someone usually considered 'bad')?--- you'd
think "what the heck are they doing down at the NYtimes that they'd stumble upon such and idea? Sure, he can think what he wants, but why is the NYTimes even allowing him airtime?"
this would seem to be a bad interview choice on slashdot's part.

Re:? --- Good Question

[Hard_Code]

'The page you are being refered by is a known hacker website...'

"Can you please explain how you classified Slashdot, a site which reports news, does interviews, and encourages discussion as a Hacker website?"

And even so, what is the point of banning travelers who have come from a supposed "hacker" site. Is there something you want to hide from people who know better?

If I call myself a security expert....

[blixco]

...will slashdot interview me as well? Or will I have to piss everyone in the Community (security and otherwise) off first? Or maybe just prove loudly that I have no idea what I'm talking about, and that I'm in it for the money?

Why not interview someone who is actually involved with computer and network security instead of sensationalism? Someone important, like Cheswick? Or a team of decent security people, like the folks who make raptor firewalls? Or anyone in the entire freaking world besides JP?

Oh My God! Not JP! Blah, blah, blah. Oh, and a ?

[shrewmy]

"They're interviewing JP? The quality of slashdot has hitten an all-time low", "I used to read slashdot all the time, but now that they're interviewing JP I'm never coming back here again" OK, those aren't exactly what people said, but they're close enough. Those have to be the most retarded reasons I've ever heard for disliking something. I can't imagine what kind of hell that would break loose if they interviewed Bill Gates... Anyways, for JP: How come when I told you me and a friend took over a server at my school with all the records on it, (which was merely a vhost on our schools computer pointing to a box owned by my friend, we were using at the time to mess around with friends heads... perfectly legal...) you were all, um, enthusiastic i guess, until we wouldn't give you any information about ourselves?

I disagree.

[FallLine]

Though you're entitled to your own opinion, I disagree. Katz and JP are the same breed. Neither are interested in "learning". I don't really care how acclimated Katz is to the "environment"--It is irrelevant to me. Though, Katz understands the "environment" on slashdot better than most, in a manipulative kind of way --that which ills slashdot. He knows which buttons to push on the longhair, psuedo communist/Open Source/intellectual, liberal, pro-geek crap.

What I care about is the fact that he ADDS nothing to this world. If he wishes to write books, that is his business. But when he is given a forum on slashdot regularly, I take issue. The fact of the matter is that he has an incentive to write for slashdot, I assure you. Maybe he wishes to "signal" to the publishers that his books are popular, by directing slashdot readership to it, thus creating further demand for his books. Quid Pro Quo. Or perhaps, he feels that he can better sell books by understanding and interacting with the slashdot mentality, his readership. I don't know what his motives are exactly, but they strike me as entirely based in self-interest.

In either case, I don't believe he is sincere. Even if he is, he isn't adding anything that I want to read or discuss at length. Every one his articles has provided an alarmist or "hypist" tone. He also turns on his words repeatedly. In short, I see no redeeming value to his writings, and many downsides.

Re:I disagree.

[mochaone]

I bet you're one of those guys who hate John Katz so much that you can't wait for him to write an article so you can rush in blinded by your pre-conceived notions about the skill of his writing and the content so you can write "John Katz sucks".

If you take issue with the fact that he has a forum on slashdot, you have a couple of options:

1. Stop reading his articles
2. Stop reading slashdot
3. Create your own website/community and invite all the people you respect to submit articles
4. Grow up and recognize that you may have legitimate differences with someone which doesn't preclude either party from expressing their opinion
5. offer factual rebuttals to Katz' "alarmist or hypist" articles, rather than ad hominem attacks that cause you to look irresponsible and silly.
   

I am curious...

[Rabbins]

... and I always have been.

I want to know what this guy thinks. I am not worried about him becoming the next pariah or something merely because slashdot links to him!

We have others comparing this to interviewing Satan, or giving credit to those who deny the Holocaust. Well, to be honest, I would be curious to hear from them as well. But I do not need you, or others to formulate my opinions, protect me, or worry about me endorsing someone you hate.

From everything I have read, heard and seen, I can not stand the guy either. If he were standing on a corner in my neighborhood yelling to a crowd, I would most likely walk right on by. But this is a chance to read someone's opinions vastly different than mine and the great majority of those on this forum... and the great thing, is that he will be responding to challenges made from people who openly can't stand him. That is a little different than listening to him rant and rave. I simply like to hear different views, no matter how twisted, insane, eveil and stupid they might be.

Ignore him if you would like... you probably know a lot more about him than I do. But I want to hear from him, and I bet there are others who would like to also. If he is encouraged by this attention, well... so be it.

Re:I am curious...

[zempf]

--snip--

and the great thing, is that he will be responding to challenges made from people who openly can't stand him.


The only thing I worry about is the fact that he chooses which questions he'll answer, so I doubt that the more interesting questions will be chosen. While it would be nice to know how much money he received for AO & just where it's all gone, I can't imagine him telling us that if it would make him look bad in any way. Then again, I may be proven wrong, who knows? :P


-mike kania

better yet, moderate everything down

[Mad+Hatter]

moderate everything to 0 or -1.

"Trouble is, just because it's obvious doesn't mean it's true"

Alright!!!

[Ky'dishar]

That's the way to go! I don't give a crap what this guy thinks about anything, and I suspect that the percentage of /.'ers who are actually interested in getting his opinion on anything is so low that it's not worth the interview. What the majority of /.'ers want to do is ignore him and I think that's what we should do. He has been slamming reputable sites without decent justification, and most of what he publishes is a joke. He's only really interested in his image; he just wants to be popular. Highlightning him here on /. just serves to further his ego and makes him think he's all the more important. What most /.'ers *really* want to tell him is that he's a sham, and he knows next to nothing about what he claims to specialize in. The absolute LAST thing we want to do is make him think he's important. It's that praise that feeds every negative and counter-productive (from a community POV) thing that he does. Let's tell him what we really think of him, and work to educate the rest of the media.

Carolyn Meinel

[Cynic]

I'm just wondering what your opinion is of Carolyn Meinel. For example, how did it come about that Heppy Hacker and AntiOnline became so closely linked? (you hosting mail servers and so forth)

Cynic

Hacker cons?

[Cynic]

For being a self-proclaimed security enthusiast, rumor has it that you've never actually attended any "hacker" con. Is this true? If so, what and when was it, and if not, why have you avoided them for so long.

Cynic

Where's the beef?

[ssgriggs]

Why is it that Anti-Online produces

• Personalities such as Carolyn Moniel. Who give new meaning to "zero knowledge".
• No security tools (ala NMAP or BO)
• The worst security related articles that can be found, containing no real research or badly regurgitated "security tips"

Isn't it true that these things have contributed strongly to your lack of credibility?

I agree

[Kostya]

I have to agree. I stumbled accorss JP's site by accident, without knowing his history and reputation. But after a couple of weeks of reading his news stories and the Mailbag responses he would post, I came to realize this guy had nothing to offer me. He seemed combatant and inflamatory, posting "straw men" and just ripping them apart. Granted, you are entitled to do what you want with your hate mail, but if you have ever read the mailbag, you know what I mean.

Again, this was all without any prior knowledge of his history and his reputation. You could call it objective (whatever that means). My "objective" opinion of him after a few weeks of reading--NOT WORTH READING.

So, it is with GREAT disappointment that I see this article post. Why would we EVER care what he has to say? What are we going to do? Interview Jess Berst and ask him how he can be so clueless yet have a job as a tech-beat writer? I mean, come on! There are dozens and dozens of great and talented people I would rather hear from than people of JP's infamy.

.

I have a good one.

[wilkinsm]

Aroung the time you changed Anti-online's "focus", I wrote an article about my personal experience with crackers. I submitted my piece along with my disapproval to your feedback forum and to osOpinion.com

I never receive any kind of response from you or anyone else in the hacker community. You all seem to be so obsessed with flaming yourselves and others that you fail to recognize the impact of your actions have on the rest of us.

You claim that now you are are on "the good side" but to the community at large you are regarded with extreme hostility, and your actions appear from many sources to appear to be nothing but imflamitory. I honestly ask you what good do you think you do when you have managed to ailinated most of the major forces involved in the security establishment?

Privacy

[um...+Lucas]

I just checked out your site for the first time in quite some time, and I had to wonder something. First off, I'd think that a security related site would value privacy of it's visitors. But then, when i came across the LinuxPPC box that you adopted, you've posted hackers IP addresses and Host Names. I recall you doing that with a "hack attempts" page logging all the alleged hack attempts against your site.

This one puzzles me because the "attackers" aren't doing anything wrong. You've invited them to "attack" that computer. Yet you treat them with the same level of respect as you do any other "cracker"...

--------------

I tried to keep this nice and just address the issue at hand. Please, nobody start lecturing the difference between hacker and cracker! It's just he's got all this info posted here and, though it's one thing to make alleged attacks public, I feel it's another thing entirely to reveal the identies of people whom he's invited to attack his site.

That's all.

History of litigation threats...

[gad_zuki!]

Considering ihs history of litigation threats I'm sure this entire interview will either be him defending his actions or a fluff piece to avoid getting sued. Either way it ain't gonna be much of a read.

Here, let me help

[Kostya]

Hey slashdot editors! I know you are busy, and maybe that's why you thought interviewing JP would be a great idea. I've already posted a comment on why I think this is a very bad idea. So I thought I would try and be productive. Here is a list of people who are of the right caliber to merit an interview (that is to say, try interviewing great folk like this FIRST before wasting your time and ours on JP):

(from the 1999 Free Software Award Nominee page)

1. Tom Adelstein
2. Eric Allman
3. Lennart Augustsson
4. Stig Bakken
5. Donald Becker
6. Brian Behlendorf
7. Tim Berners-Lee
8. Jim Blandy
9. Craig Burley
10. Thomas Bushnell
11. Shane Caraveo
12. James Clark
13. Alan Cox
14. Miguel de Icaza
15. DJ Delorie
16. Theo De Raadt
17. Matthias Ettrich
18. Paul Eggert
19. Ralf S. Engelschall
20. Fred Fish
21. Olivier Fourdan
22. Fractint Team
23. John Gilmore
24. Andi Gutmans
25. Chuck Hagenbuch
26. Carsten Haitzler
27. Charles Hannum
28. Shawn Hargreaves
29. Geoff Harrison
30. Mike Heins
31. Joey Hess
32. Earl Hood
33. Jordan K. Hubbard
34. Dan Ingalls
35. Lars Magne Ingebrigtsen
36. Kyle Jones
37. Bill Joy
38. Alexandre Julliard
39. Mike Karels
40. Jeremy Katz
41. Spencer Kimball
42. Donald Knuth
43. Werner Koch
44. Alfredo Kenji Kojima
45. Jeffrey A. Law
46. Patrick Lenz
47. Marc Lehmann
48. Rasmus Lerdorf
49. Mark Linton
50. Paul Mackerras
51. Peter Mattias
52. Doug McEachern
53. Caolan McNamara
54. Kirk McKusick
55. Bram Moolenaar
56. Tobias Oetiker
57. Tim O'Reilly
58. John Ousterhout
59. Dave Rand
60. Brian Paul
61. Nicholas Petreley
62. Bernhard Rosenkraenzer
63. Alessandro Rubini
64. Dr Douglas Schmidt
65. Keith Sklower
66. W. Richard Stevens
67. Darryl Strauss, Zeev Suraski
68. Danny ter Haar
69. Andrew Tridgell
70. Jorrit Tyberghein
71. Bert Tyler
72. Guido van Rossum
73. Miquels van Smoorenburg
74. Wietse Venema
75. Paul Vixie
76. Patrick Volkerding
77. Tim Wegner
78. Jim Winstead
79. Jamie Zawinski
80. Phil Zimmerman.

Granted, some of these have been covered already, but maybe a handful at the most. I must confess to maybe knowing who 10% of these people are. I would sure like to know something about the rest of them. Just imagine all the cool stuff each of these people has to offer--why in the world are we looking to interview inflamatory, damaging people like JP?

Just trying to help :-) I figure 80 some odd suggestions should keep you busy for a while.

Re:Here, let me help

[iago]

Hey, you forgot to include Bill Gates! :) (He's in there)

Re:Here, let me help

[jfunk]

Man, when I saw that guy's name on the article, I had to read furthur to confirm that this was a Slashdot interview.

I immediately thought of how bad a choice this is. You know that no question moderated up is one he is willing to answer. I'm interested to see how/if he'll reply.

As for your list, (besides the fact that it appears to be mostly verbatim from another recent list) the first name that I'd pick is Patrick Volkerding. C'mon, he made the first high-quality Linux distrib.

Of course I wouldn't mind seeing some of those other names that haven't been interviewed yet. JWZ, John Ousterhout, Donald Becker, Miguel de Icaza, Bill Joy, Andrew Tridgell, ... wow, lots.

Sadly, you'll have to remove number 66 from that list. It's too bad, that would have been a very interesting interview.

Qualifications

[GodHead]

I have two questions for our *ahem* esteemed guest..

1. What kind of qualifications do you have that make you a computer security "expert"? Please be specific.

2. I have never seen any mention of your name or site (as opposed to l0pht, rfp, ect) in regards to finding exploits, patching holes, making tools, and generally improving computer security. Please explain what you have done to help improve computer security for the masses.


GH
Jesus saves souls and will redeem them for valuable prizes.

isn't anyone scared...

[BluFinger]

...of getting sued over their questions? ;^)

Roblimo, etc. should be quaking in their boots when they submit the questions they cull off the top of the discussion! *smirk*

Holes in the ground

[teasea]

i'd have said, he doesn't know his scrotum from Kentucky Fried Chicken; but that's just me.

Carolyn Meinel

[Trepidity]

What do you think about Carolyn Meinel? See any similarities?

let's see if he'll actually answer a question...

[Mechagodzilla]

Here's a couple of questions... 1. Have you paid restitution or provided any sort of compensation to the people's or company's sites you have personally hacked into in your 'notorious' youth ? 2. Aren't the techniques you employ just as illegal or invading of privacy as the hackers you have sworn to hunt down ?

You're obviously bitter...

[FallLine]

You're just bitter from previous discussions with me. e.g.,
http://www.slashdot.org/comments.pl?sid=99/10/30 /1253219&cid=136

1. I don't read his crap anymore. Though Katz hype articles DO take away from that "critical" mass that is formed in other discussions, thus hurting me.

2. I, and others, just might stop reading slashdot, if things don't improve. But I won't go without a "fight", so to speak.

3. I'm actually in the process of doing something much like that, though with a different spin.

4. Other parties are more than entitled to express their opinions, but that doesn't mean that I can't desire not to see it on slashdot. You'd hardly advocate Bill Gates' right to post FUD on here regularly...or KKK (et.al).

5. You're obsessed with "factual" arguments. Because the editors know what they are doing perfectly well, I do not need to "prove" anything. In truth, the only thing that really matters is that significant portions of the mature readership here object to Katz articles. Instead of wasting time, I provide them with a financial argument as to why they shouldn't shrug off editorial control.

Additionally, I don't need "factual" arguments. In fact, these "factual" arguments are numerous on Katz's articles--they ARE the problem. Though it is true that I have posted comments on a Katz's thread, I won't sustain the argument like many others will.

PS: If you think all action and argument must be made on "fact", then you're a bigger fool than I thought. Your notion of "fact" is statistics. The fact of the matter is that statistics are easily bent. There is a saying "There are three kinds of lies in this world: lies, damn lies, and statistics."

You don't need to know the exact statistics to know that driving drunk is dangerous, you can be reasonably confident though when you OBSERVE multiple friends that have died in such crashes that it is infact dangerous.....and pssst, Since when does Katz bring "fact" into his arguments? By your reasoning, since he lacks "facts" he can make no claims about: society, law, computing, etc.

Re:You're obviously bitter...

[mochaone]

You're just bitter from previous discussions with me. e.g.,

Hmmm. Until I revisited that link I had no idea that I had ever sparred with you before. You have a better memory than I do.

I'm not a hung up on the "fact" thing, as you claim. As a matter of fact, I am the first person to criticize someone who solely tries to prove a fact based on "statistics. You are correct; statistics can be bent. I don't think facts can be bent, however.

Statistic: 64% of consumers browse Internet with Internet Explorer

Who are these "consumers?
What is the size of the study population?
Do these people include ISP's like AOL who standardize on Internet Explorer?

Fact: A study was conducted to give a picture, admittedly non-conclusive, about browser choice among internet users.

I mention the fact issue because you (and others) criticize John Katz for what you consider "pulling stuff out of his ass"; in other words, you feel that he does not research his issues, rather he releases articles based on his "gut feeling", keying on topics that are certain to elicit comment from slashdot folks.

The best way to criticize someone's opinion, which is what Katz is really serving, is not to offer your own opinion. All you are doing in that case is offering up your own biased view of the world. You're better off looking for specific comments that offend you , and if the comments do not have a factual basis upon which to refute, offer commentary on why you feel offended.

Non-sensical rantings about "he sucks", or "he is ruining this place" don't garner you any points, at least not among people who like to see reasoned debate. Sure, you might appeal to a portion of the slashdot community, but for the most part, those people and their emotional rhetoric are tuned out.

Re:You're obviously bitter...

[Lynnaea]

I have no personal stake in either this argument or this topic in general, though from my understanding of events JP is more than likely a heartless bastard.

But of all the flaming and irrationality that have been going on in these comments, this one is absolutely the WORST I've seen.

2. I, and others, just might stop reading /.

"Waaah! Mommy! I'm going to take my ball and go home! I'm not gonna play with you people anymore!" Please. Shit or get off the pot. I certainly wouldn't miss you -- mainly because of bullshit like this:

"I do not need to 'prove' anything. ... I don't need 'factual' arguments."

Excuse me? Is this a complete departure from reality and rationality? It's not for arbitrary reasons that in competitive debate circles, the burden of proof lies with the negative, that is, the person who dislikes the status quo must unequivocably prove his argument, otherwise, the status quo wins and remains the same.

If you refrain from attempting to "prove" anything, this is what you get:
- an image of insecurity, since you seem to feel the world should act on your whims and not on logic. Seems rather dictatorial, if you ask me.
- ignored. People here are generally intelligent enough to recognize a baseless argument when they see it.

You don't need 'factual' arguments? But yet, when JP doesn't use them, you get upset? Isn't that the definition of "hypocrite"?

You seem to posit it as "fact" (though I am not at all sure it is) that "significant portions of the mature readership here object to Katz's articles". Where's your data? What's your source? Are you a /. admin? If you're not, why should I believe you? Don't give me that bullshit about statistics lying. It's often true, but that doesn't excuse you from showing me (or anyone reading this thread) why you think that's true. I would be more willing to wager that the majority of /. readers might disagree with Katz, but wouldn't kick him off, which is what you're suggesting. I would think, instead, that there is a very screamingly vocal minority (you included) that throws a hissyfit every time he posts something, to the extent that the volume of the flaming exceeds the volume of geniune content generated by the article. Volume of posting does not equal number of unique /. users.

Not all action and argument must be made based on fact, but action and argument based solely on opinion is ineffective at persuading others to see your point of view.

You're no better than JP when you post baseless crap like this and then claim -- beyond all reason or accountability -- that you don't have to back it up.

---

Re:You're obviously bitter...

[AviN]

> Do these people include ISP's like AOL who standardize on Internet Explorer?

Don't forget that every version of Windows starting from Windows 95 includes Internet Explorer.

Do you think Satan would come?

[Amphigory]

I have a few questions that I would like to ask him. Although God might tell the truth more.

Sources of controversy. . .

[EvilKarma]

As I understood it, the interview section of Slashdot was there for us to hear from acknowledged experts and/or controversial figures involved within different technology fields. I think its pretty clear based on the postings that most people don't find JP to be an expert in any field. Then the question remains, is he a good candidate for this area? Does being controversial alone merit him the chance to sound off? In some cases, I might say "yes" however in this case I don't. JP has shown himself, time and time again, to be a young man with no professional ethic or interest in forwarding anything other than his own agenda. As an avid reader of Slashdot, I personally would hate to see it stoop so low. There are a number of far more knowledgeable/interesting people in technology today. I have no real desire to hear anything he has to say (and frankly anything he says is suspect). I don't think the expected flame-fest is really worth it. Let's find someone worth talking to. Perhaps Mike Shiffman has some time?

HYPOCRITES

[Rabbins]

Yeah, let's lynch them for trying to make money doing something they love!

Would you rather that the site merely collapsed because they were out getting "real jobs" and no longer had the time to maintain it.

Then you would have something else to bitch about.

Give me a fucking break. Yes, they want increased banner ad revenues... Katz helps bring that in. Guess what!? It's on purpose! Guess what else!? Topics are delibarately set to spur geek mania (Hell, they even call it News for Nerds)!

You are either a horribly jealous hypocrite, or entertain extremely lofty ideals and better be living as a monk somewhere. Since you must have access to a computer, my guess is that you are a hypocrite.

pariah status

[Angwe]

Do you feel affected in any way by your being labeled a pariah by the hacker community?

Do you feel that enough people are taking corporate and governmental threats to personal privacy and security seriously?

Do you feel that denying the community at large access to a resource like packetstorm (for whatever temporary time you did) was worth it to protect your image?

Do you feel that your image is any less tarnished because of your actions against packetstorm?

NASA and government agencies

[netpuppy]

You claimed to be working for NASA, the Air Force, and the NSA. None of these organizations would claim to have anything to do with you.

Explain, please?

uh, it's not 'uncracked'

[delmoi]

Check out http://www.forbes.com/column ists/penenberg/1999/0927.htm. On forbes.com, second paragraph
--
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

Re:uh, it's not 'uncracked'

[Wntrmute]

That article is kinda inaccurate there. What happned was AntiOnline was linking to another site, which then deliberately set up a redirector so that any hits that came from AntiOnline, went to another page, which made it look as if it was cracked. Since no AntiOnline system was actually compromised, you can't really call it cracked. I suppose you could say AntiOnline was *hacked*, in the "clever prank" definition though.

I have my problems with things JP has said/done, the Packetstorm thing in particular, but the security on the site is set up pretty damn well. Now whether it is secure because of any "expertise" on behalf of JP, or from highly paid professionals with his VC money, is another story altogether.

Oh, you can read about AntiOnline's security setup here.

-Wintermute

Ken Williams interview idea [/me nudges CmdrTaco]

[quux26]

Interview Ken Williams instead, at least he's honest.

Why do we pay homage to this putz? Would the LinuxExpo bring Gates as a keynote speaker?! Get Ken Williams on here to provide him with some support. It's the least we can do for the guy.

My .02
Quux26

JP's general hypocrisy.

[Jeff-]

I have several questions which I will ask within the narrative below. The narrative is important to understand the context of the questions, and to support my arguments.

Several months ago I was raided by FBI for supposed involvement with the "hacker" group gh. The extent of my involvement was participating, as a caller only, in illegally funded phone conferences. JP, who also participated in this conferences, labeled me as a hacker, and a member of gh on his "news" site. Neither of these accusations are true. He has many more ties to this and other hacker groups than I have ever had. My first question is this; If you label me a hacker, than do you label yourself one? Are you in your little database of supposed computer criminals? Secondly, How can you pretend to be taking a stand against "hackers" while you are involved in the same activities?

My third question is in regards to your coverage of the situation. You posted unconfirmed information from an unreliable source in regards to the status of my employment at a prominent software development company. As a result of this I was contact by several news agencies, and immediately stereotyped as a hacker even though I have never illegally penetrated any computer system, nor had I been charged with, or accused of any crimes by the FBI. In response to this I granted one news agency an interview, which I thought went well, but also backfired. As a result of the negative press my former employer could not even consider allowing me to stay. My question being, Do you expect people to consider you as a reliable news source even though you report data which you receive through unreliable channels? And lastly, Did you ever stop to think what the impact of your coverage might be? It seems to me that in your rush for the big story you have failed to check for the correctness in your articles, and as a result of this you are hurting innocent people, such as myself. I'm sure this has gone on in other cases, but mine is the only one I have enough knowledge to comment on. I don't attribute these unfortunate events to you, but you certainly did not follow good news practices in reporting them. You have only served to injure my credibility and your own.

Lastly, have you ever considered what legal action may be taken against you for your involvement with these criminals? Do you even recognize the hypocrisy of your stance on hackers being one yourself by your own definition?

Sincerely,

Jeff

Re:JP's general hypocrisy.

[tweek]

uhhh dude. IANAL and all that but you have some legal grounds to stand on here I believe. You might be able to find some nice lawyer type to help prosecute. If he made all these slanderous statements and it has stopped you from making a living then by all means go forth unto the courts. Of course if you're lying (which I doubt), Ignore me.
"We hope you find fun and laughter in the new millenium" - Top half of fastfood gamepiece

Re:JP's general hypocrisy.

[nullstar]

Jeff - I'm not a lawyer, but... Based on the information you supplied, it is not clear whether or not you've been libeled. AntiOnline's search engine didn't help me find the story you were referring to. According to about.com, libel requires five things: 1)Negligence on the part of the writer 2)The material must be a) false and b) damage your reputation. 3)The material must be published (NOTE: this is the principle difference between libel and slander: slander is spoken, libel is written/published) 4)The material must be unprivileged communication 5)The reader must be able to identify you. You imply that all of those are true; however, more information is needed. * You claim JP's source was unreliable. Do you know who the source was? Did JP have reason to be suspicious of that source? If JP relied on a source he knew to be somewhat questionable, negligence should be easy to prove. * AntiOnline defines hacker widely (i.e. Eric Raymond and Bruce Schneier are listed as hackers). Any falsity would have to involve JP's allegation that you were a member of gh, rather than that you were a hacker (or that labelling you as part of gh also labelled you as a "bad" hacker). * If you actually made the illegal conference calls (as opposed to merely being a participant -- your wording isn't clear), you could be considered a phreaker, and since phreaking is a form of "bad" hacking, the fact that you are phreaking would likely null any damage done to your reputation by JP calling you a member of gh. * On the other hand (and like nano-second), I find it hard to believe that you were fired as a result of this incident. I would not be surprised if some legal action can be taken in that arena. While I'm not clear on the details, what you have said makes me agree with the previous posters: get some legal advice. (I *think* that you'd have to prove negligence to actually win any damages, though, if that's a concern.) Joel

Services Provided

[BlueCalx-]

I see any maintainer of a website as a service provider. Not an ISP (necessarily), but someone who enjoys letting the entire world in on something that they couldn't possibly get anywhere else - something that could be (and usually is) informative and enlightening. As the chief guy of what is unquestionably one of the most controversial websites out there in the hacking/cracking community, how do you feel about all of your opponents who attempt to tear you down? Do you ever feel like cutting off the "service" after witnessing all the criticism?

All this hullabaloo....

[DarkMaverick]

I admit to not being a hardcore hack. I am right up there with ameture. I have read up on this big stink and all I have to say is shut the SOB down. I don't care so much about his articles being screwed up, freedom of speech gives him the right to be a moron. But to not allow others that same right and to slander their good names takes it way to far. I challenge anyone to find one shred of evidence to back up any of the claims made by anti-online and its infamous owner.

Completely and utterly understandable

[WanderingWastrel]

Hmm. /. is owned by a company now -- a company going IPO soon. Companies make money off web sites by enticing people to visit the site often, which makes the site more worthwhile to advertisers to advertise on.

Having very controversal interviews on /. helps make them money, which is what companies do. Just sort of what happens... [shrug]

Its unavoidable. :(

[delmoi]

Unfortunately (your post not withstanding), the level of intelligent discussion seems to have been dropping steadily in the last six months, maybe even as far back as a year ago. Popularity among the flame-fest loving crowd seems to have driven down the average intelligence level. -A disgusted oldtimer who no longer logs in.

The fact is, /.'s intelligence level will go down, as with anything as the number of people using goes up. Just look at what happend to usenet. (Systems with stupid users won't atract anyone) I'm sorry, just set your threshold high and be happy. *obviously* Rob, Hemos, and Kats want more readers, not less, since the majority of there site content comes from us.
--
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

Does antionline really have a staff?

[weld]

Over the past 3 months there have only been 3 original articles on Antionline not written by JP himself. No articles in October or November at all. Where has the Antionline staff gone to? Are they defecting or just busy with more important things?

-weld

Oh, come now..

[Kitsune+Sushi]

1) Slashdot is a single interest. Members of many communities intersect here, but your extraction from M-W does not validate your claim. Geek community, hacker community, these make sense. Geeks read this site. Hackers read this site. Other kinds of people read this site. This does not bind us all into a supercommunity any more than there is, say, an Austin-American Statesman community (local newspaper). Make sense?

2) Signal 11 was emphatically joking with regards to that quip about karma (which is to say, he brags about it in a very joking manner, because he's not real concerned).

Do we really need to draw blood over this? It's beginning to grate. Usually only lawyers split hairs with regards to semantic nonsense.

Re:Oh, come now..

[mochaone]

See my response to your buddy.

regrets

[j1mmy]

Do you ever regret any of the decisions you've made concerning the packetstorm incident, working with Carolyn Meinel, and the like?

Public Opinion Surround Your Credibility?

[$nyper]

Do you believe people still find what you have to say to be credible?

With such examples as the disproved accusation you made against the employees of attrition.org and the role you played in the shutting down of the security web site www.packetstorm.com.

How would you respond to a comment that was made about your lack of credibility and/or the distrust that seems to surround your persona?

TheFuture of Antionline.com

[c0re_pump]

What,(if there is indeed) the future of antionline looking at from the economic point of view? concerning new projects, and possible associations. Do you consider ANTIONLINE.COM a profitable organization? -so to speak?

(JP != Jessie Ventura)!!!!!!!!!!!!!!!!!

[delmoi]

I don't really know how you could compare the two, Jessie Ventura's just a guy who got elected to Govenor. He's a little 'diffrent' then most polititions, but really that's for the better.

JP, on the other hand is aberant not only to the 'hacker community' but to humanity in general. Nothing else needs to be said about him, although I am intrested in reading this interview...
--
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

Re:(JP != Jessie Ventura)!!!!!!!!!!!!!!!!!

[British]

Heck, I'll forgive my moderation points for this.....


DP and Jesse Ventura have nothing in common. JP never gave ME a nice sales tax rebate. UH oh, im gonna get sued now.

LinuxPPC chalange....

[delmoi]

Actualy, the origional hack LinuxPPC chalage did the same thing. It didn't seem 'wrong' in anyway, basicaly like keeping score in a game. The 'intruders' had nothing to hide....
--
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

Re:? --- Good Question

[jd]

That's easy. He was probably using "Hacker" the correct way, in the message - a-la people who experiment & tinker, co-operatively, to discover and learn.

After all, that is something Slashdot indubitably is! On the other hand, he seems to have been treating it as meaning the same as "Cracker" or "Trespasser", which few (if any) on Slashdot are.

(I suspect the few genuine "crackers" on Slashdot - note the difference between C and c - are very different from the sort of people he imagines. As for Script Kiddies, you get them everywhere. I think they're one of those Super Bugs that the medical profession is so concerned about.)

Andover has no control

[delmoi]

Andover.net has no creative control of the site. Crative control was maintaned by Rob "CmndrTaco" Malda, and the other posters (Hemos, Katz, roblimbo, etc).

This was exsplicitly stated in there contract. Also, Rob (and Maybe hemos) sit on andover's board...
--
"Subtle mind control? Why do all these HTML buttons say 'Submit' ?"

JP: fruit or fiction?

[nerdling]

I love JP for his hard work and dedication to suing everyone who mentions his lame websites, http://www.anti*.com. I have been active in the shun antionline project and an avid reader of attrition.org. I went so far as to post a contest on my website (which isnt always up) to see who can get the most docs on JP. I now have his phone number and various other fun information. Id just like to ask JP why he lies, cheats, writes malicious stories, and blames most of the "evil hacker attacks" on actually decent innocent people. As for his shit filled Granny Hacker from heck business, its a load too if you couldnt figure it out. Someone broke into her computer and got her bash log and amazingly enough, she used DOS commands, but instead of stopping to see why they didnt work, she kept on using them over and over. She couldnt hack her way out of a wet, soggy paper bag if she had a chainsaw. JP is just a fraud. When he would chill on IRC in the utterly "3l33t" #hackphreak channel everyone would love to kick him out and ban him. JP has committed fraud numerous times, and I am dead serious. He steals content for his website and his "hacked archive" mirrors etc. He lied about tons of things, from "evil hackers" to source code. I remember one incident from a site that like segfault.org, mocked everything that is life, although it seemed a little closer to reality. They posted a story about some made up hacking group cracking into 30 consecutive top secret military servers, but put a comment in the HTML file that said "This is all bogus! -the management" and when lo and behold antionline had a news article about that group, they actually had cut the complete article (in the source), from the timestamp at the top to the last sentence, including the comment. You can see pictures and copies of the file on various sites. I dont have any serious questions because there are none to be asked. All I want to know is why he says he runs unix... when I have seen pictures of his shitty apartment which is filled with iMacs. I love you JP... you goat-fiending fag.

-love wh0rde

well

[mistabobdobalina]

jay pee, why are you so fscking annoying??? youre the biggest fscking arsehole in the world!!!!

Anti AntiOnline, AntiSlashdot, WTF?

[signine]

Admittedly I hate JP and everything he allegedly stands for, but the outcry against SlashDot is quite absurd. JP, like it or not, is a member of the "community." If you wish to show him to be a fool, degenerate, or a fake, simply ask him a question which shows his ignorance.

I do know people who knew JP before AntiOnline gained its fame, and apparantly he was a soul-sucking worm of a person. I've heard that he spent so much time working on AntiOnline that he forgot to bathe, or work towards his High School education.

But then again, how many of us have done the same for our little obsessions?

The hype surrounding this man is amazing, and the fine people at SlashDot know this. As SlashDot has a greater tendency towards understanding those of our mentality, it is left to them to make an attempt to show us the truth behind this man. If SlashDot wants to do a feature on him, let them do a feature. God forbid they come up with potentially useful (or at the least amusing) knowledge.

So, now I guess I will ask a question Why do you hide behind malevolence towards a subculture you don't understand?

That is all.
--

BITCH WHINE AND MOAN!!!!

[Hangtime]

BITCH WHINE AND MOAN the whole time today!!!! Man its like you people dont have anything better to do. Why do you crack a site or an encryption scheme? To show it up, why do you ask tough questions because either get good answers or stupid responses. "Better to be perceived a fool, then to open your mouth and remove all doubt." What I heard every last post today, whine "He sucks, he shouldnt be here. He sues everyone." Personally, I dont give a crap less but you all choose to go into bitch mode instead of putting your thinking caps on. BTW, if someone had put shit about my family on a website, number 1 I wouldnt have threatend to sue I would have taken my metal softball bat to the somebody's ass. As far as being credited for work, hey more power to him. If he can get favorable mainstream media coverage all the more better. No smart questions, no stupid answers here people and the cycle propagates itself. SOOOOOO, either a. shut him up with good questions or b. quit bitching about him and not knowing anything and being able to spread his image throughout the media land. Hangtime

This is a two-parter

[Legion303]

a.) Did you feel special to be interviewed as an "expert" on MTV with the other script-kiddies for the Real Life episode "I'm a Hacker"?

b.) Do you honestly expect people to ever take you seriously again, if they had even the slightest modicum of interest in you before?

Incidentally, I had never heard of you before my friends in the security field made me aware of your general stupidity and libelous mannerisms. Did you and Carolyn get the _Secrets of a Superhacker_ book lovingly signed by 303? :)

-steve

Re:Does anyone know of a better Slashdot?

[DoomHaven]

Thanks for the link!

If any of the /. force is reading *any* of these comments, *please* reconsider this interview. I have been reading /. for close to 2.5 years, and this is the lowest, the absolutely lowest pile of shit I have ever seen. And personally, I really do not mind Jon Katz. He makes me think, sometimes; if I don't agree with him, I don't.

But this is the lowest. Please do NOT go through with this interview for two reasons:
1) If this interview goes badly, or JP thinks his good name (okay, I can't say that without laughing) is being tarnished, legal action will be taken. Of course, Andover lawyers may be up to the challenge, but is this a headache you *really* want to deal with?
2) *MANY* loyal readers, myself included will leave. This technocrat.net looks not to shabby; it reminds me of a little web site I used to visit during the spring of 1997 that challenged me, made me proud to be a geek, and introduced me to a greater world. That site used to be this one.

Another scream in the ether....

[AmoebafromSweden]

I must agree that there seem to be a bit of sensationalism over the choice of person to interview. However if the case is (which I personally believe to be more the truth) that jp posseses all the negative traits that he's been accused of, then this interview should help bring about his fall. The only way to let people know the truth about jp is to bring him out in the light, let everybody ask him, if he chooses to not answer the questions which are of critical nature or doesnt produce a good rebuttal to those questions, it will only help to bring about the fall of his credibility among those who still have some left. I believe that many people from The new york times, Wired and other prominent publications read slashdot. This will help them and others to learn the truth about jp. It is possible that slashdot might help the community by posting this interview. I haven't seen jp post anything in defence to all the accusations that have been brought forward. Not on his website or any other place. This is the time for jp to defend himself and if he cant do that, then a lot of people will se that and he's credibility will fail. On a little side note: People complain over that slashdot changes. Slashdot is not the same thing now, that it was a year ago, and it will not be the same thing in one year, everything changes over time, the old slashdot that many knew is forever gone. Slashdot in it current state is not eternal, everything changes over time. Especially slashdot. There are a lot of people behind Slashdot. Those people who chooses the stories for slashdot change over time, the people who post on slashdot changes and there is also an increase over time, raising the probability for flames and other positive or negative comments. Everyone changes, I am not today, the same being I was a year ago. Everything/everyone changes nothing is constant. (arrgh I know im a bit repetitive but im tired)

Another scream in the ether....

[AmoebafromSweden]

I must agree that there seem to be a bit of sensationalism over the choice of person to interview. However if the case is (which I personally believe to be more the truth) that jp posseses all the negative traits that he's been accused of, then this interview should help bring about his fall.

The only way to let people know the truth about jp is to bring him out in the light, let everybody ask him, if he chooses to not answer the questions which are of critical nature or doesnt produce a good rebuttal to those questions, it will only help to bring about the fall of his credibility among those who still have some left.

I believe that many people from The new york times, Wired and other prominent publications read slashdot. This will help them and others to learn the truth about jp.

It is possible that slashdot might help the community by posting this interview.

I haven't seen jp post anything in defence to all the accusations that have been brought forward. Not on his website or any other place.

This is the time for jp to defend himself and if he cant do that, then a lot of people will se that and he's credibility will fail.


On a little side note:
People complain over that slashdot changes. Slashdot is not the same thing now, that it was a year ago, and it will not be the same thing in one year, everything changes over time, the old slashdot that many knew is forever gone. Slashdot in it current state is not eternal, everything changes over time. Especially slashdot. There are a lot of people behind Slashdot. Those people who chooses the stories for slashdot change over time, the people who post on slashdot changes and there is also an increase over time, raising the probability for flames and other positive or negative comments.

Everyone changes, I am not today, the same being I was a year ago.

Everything/everyone changes nothing is constant.

(arrgh I know Im a bit repetitive and ranting but I am tired so what the heck...)

Question for JP

[jalewis]

What qualificaiton do you have to back up your claim of being a security expert? Do you have any degrees? Do you have any certifications? How many years have you been a "Security Expert"? Are there any REAL companies that have used you for security advice?

If you have no answers for these then, What do you think makes a security expert? Is it just claiming that you are good enough?

I would like to see some real responses to these questions and not the usual evasive rude responses you are famous for.

Jas

Re:Does anyone know of a better Slashdot?

[Pasty+Drone]

NewsTrolls

Knowledge Base

[schematic]

Hi John!

Seeing how the /. people were nice enough to give you an interview, I see it as a perfect oppurtunity to ask you some questions i've had:

What was contained in the "Knowledge Base" that you supposedly shared with government agents?

A few months back, when I still had respect for you and your friend Carolyn, I came home to see you call the administrator for the happyhacker network, and have him take my computer (otter) off the network for actions of the users on IRC. (Log of the event.) To this day, I can not understand what makes you think it's right to silence the thoughts of others through the use of censorship. That was _my_ machine. The question I'm trying to ask is this: Why do you immediately censor all the bad karma focused towards you, why have you never tried to refute the "accusations" with facts?

I think I'm only allowed one question per post, so i'll stop with two. NOTE: I'd really like to see this post chosen because of the personal expriences i've been unfortunate enough to have. But don't pick it if you can't find something better.

Questions for JP

[don_bailey]

1. What are your future education goals (general or advanced degrees you intend to pursue), concentrating in what, and at what university/college?

2. Do you intend to write a book (or collaborate on one) in the near future, and if so, what will be the subject (and if collaborating, who with)?

3. Do you feel that you are a "security expert/consultant" and provide a specialized/unique service to the information security community, or are you still struggling with finding your niche in the community while trying to justify titles such as "security expert/consultant"?
--
Beetle

Re:Here's a question...

[zempf]

Eh, I can answer that & save him the trouble. I believe his full name is something like John P. Vransevich, hence the JP. Also, his email addresses seem to generally be jp@whatever, so it seems that's what prefers, too.

-mike kania

Interview Bill Gates!

[Ektanoor]

It would be much better and much more useful I believe. At least Bill has done something good among the whole mess. Antionline has just mess the whole mess even more.

Frankly I consider this an error. Well Antionline was something some time ago. It was a place one could agree/disagree with. But since that "major overhaul" there, the thing is pure crap. Vranesivich has become the Hoagland of the hacker community. He uses lies damn lies and statistics just the same way as he manipulates information, making his site a very dangerous place. It sounds much like a radio Freedom broadcasting over enemy territory. In this point Antionline is a great site. It has gained its point of perfection.

Anyway I would like Vranesevich to answer one simple question: Is Antionline just a metaphora or an intent?

Just-in-case disclaimer: My opinions, here, do not mean that I intend to cause any physical harm to Mr. Vranesevich, his family, his dog or anyone else related directly or indirectly to him.

JP Question

[N0r4d]

JP, Could you elaborate on your past troubles with Pitt and explain how you managed to convince them not to throw you out? Could you also expound on your current relationship with Prophet post-Pitt after reports indicated that you left him "holding the bag" as it were?

Re:AntiOnline (new AO slogan)

[the_tsi]

Except I've actually seen the 4 year old alien dog that birthed Oprah Winfrey's second cousin. So supermarket tabloids have more facts than AntiOnline.

-Chris

Re:? --- Good Question

[Black+Parrot]

> genuine "crackers" on Slashdot - note the difference between C and c

As in "Arrest that man for impersonating a Cracker!"

I suspect you've discovered the reason the media insists on using 'hacker' for 'cracker' -- at least in the USA!

--
It's October 6th. Where's W2K? Over the horizon again, eh?

Maybe a real question

[OnyxRaven]

1: As of late, the updates to AntiOnline have gotten fewer and fewer, shorter and shorter, and more and more meaningless. Why is this?

2: After your 'change in mission plan' even I saw the change in the content. It, to my opinion, was of less quality and less relevance. I used to read the site every other day or so to check up on the world's security news, but now I stay on top with Security focus and hacker news network. Why did this change in plans change the face of the site so much? couldn't the same content quality have been continued, just from a slightly different perspective?

Darice, Inc. provides funding?

[iwchick]

JP, According to a recent article in the NYT Darice, Inc. provided funding for operation of your site. Evidently Darice is the nation's largest distributor of craft supplies. Can you tell us about the strategic vision of your teaming with this company as well as their goals in regards to Information Systems Security?

Re:What a disgrace to Slashdot!

[Mike+A.]

Actually, that looks like the handiwork of an automated rant generator. It's scary, in a way, that we've developed computer software that's almost as coherent as the less coherent of Usenet kooks... though the software probably draws from their works for their vocabulary and sentence structure :)

I'd prefer the Unabomer

[antizeus]

... at least I'd be interested in hearing what he'd have to say.

Unfortunately I don't think he does many interviews. Apparently he did one for Timothy McSweeney's Worldwide Fondness though.

Legal action against John Vranesevich

[Tiroth]

Why hasn't this ever occurred? It seems that there is substantial evidence that he has made damaging assertions about persons (e.g. Jericho) that have been proven to be untrue. Now, merely shoddy journalism is not libel, per se, but if there is malice involved then this is potentially illegal. It seems as though an effective way to stop slander and bully tactics would be to merely bring a suit against him. Getting burned in court would make it all the easier for any future victims to claim malice and seek damages.

~Tiroth

Re:Legal action against John Vranesevich

[Legion303]

Simply put, Brian doesn't have time to drag JP to court. He's (Brian, not John) content to post his rebuttals and make JP look like the foolish media whore that he is.

Speaking of media whoring, don't worry about Slashdot getting your questions to JP; I'm certain he's following these messages closely :)

-Legion

802.11 and security

[gwolf]

802.11 is very secure - Secure according even to military standards. I don't have the exact data handy, but there are basically two variants:
- Direct Sequence Spread Spectrum
- Frequency Hopping Spread Spectrum

The good one, accodring to most experts, is FHSS. Your two points of communication agree on a common, long key, and they transmit data shifting their band according to the key. It's nearly impossible to interfere, even harder to decode, and very resistent to frequency jamming.

I suggest you to take a look at Breezecom, they have very good equipment for 802.11 (we use it here in Mexico, no problems whatsoever, very easy to set up, and much more reliable than a wire-based network)

Re:802.11 and security

[PhuzzyL0gik]

Well, yes spread spectrum technology does offer several advantages over narrow band methods of communication, however the 802.11 standard did (and still does i think?) have several shortcomings. Namely, the WEP (Wired-line Equivilant Privacy) suggests using a 40bit symmetric cipher such as RC4. This is optional and only applies to data contained within frames and not the headers. Therefore, it is possible for someone to gather information about usage of access points such as caller, receiver, etc. Also, the amount of time it takes to brute force a 40 bit key space is sooo small nowadays, it offers very little protection. (note: most Breezecom products actually use LESS than 40bit keys) Another shortcoming is that the standard does not suggest specific key management schemes. This is left up to the vendor to figure out and implement. One other problem, separate from the standard is how vendors implement FHSS. Essentially, FHSS is a spreading technique in which the center frequency of a narrow band signal is shifted based upon the output of a psuedo random number generator. Often times insecure initialization vectors are used. Sorry for the sidetrack guys!

It's an oportunity to critizise John. Not Slashdot

[arcade]

Slashdot folks, you all should be ashamed of yourselves. Who is next on your interview list, Satan himself? JP is the biggest sellout & poser, seeking to elevate his name at any cost, be it hackers, crackers, or broken laws.

the interview will consist of questions posted by us, the readers. If you want to critizise john, do it in questions. Let him make a fool of himself.

If you didn't get it, slashdot just gave us an oportunity to flame the guy to hell and back, and he obviously has commited himself to answer the questions...

:-D


--

My Question

[hogwaller]

Hey JP-

Being an old ./er (#421), I normally stay
out of the fray. I'm too busy. Band, business, family, etc. But I do have a question I've thought long and hard about and would like an answer to.
Why don't you kiss my hairy white ass?

oh my God

[mcc]

i decided to glance at antionline one more time upon reading the comments here.
first thing i see:
Can You Trust Them?
Monday, November 8, 1999 at 11:06:49
Is the security industry your friend, or is the proverbial doctor selling you snake oil?
http://www.antionline.org/cgi-bin/News?type=anti online&date=11-08-1999&story=trust.news

Read this. it is PATHETIC. Basically it is: jp bashing packetstorm! Apparently not content to dog it to its death, he looks at its new incarnation and, overbrimming with FUD, suspicious statements and things like "the information on packetstorm was compiled by MALICIOUS HACKERS!!".. my God.

I know only a little bit about the whole antionline/packetstorm thing. But even if i'd known _nothing_ it would be pretty obvious just from _reading_ this that this kind of nasty personal attack on a competitor is just totally uncalled for.. blech. i feel dirty having read it.

But you'd think that JP would have kinda sorta realized that having packetstorm shut down was a horrifying dirty act that made him no friends.. and at least had the decency not to immediately attack it once it is brought back from the dead. I guess not?

Forget JP

[slashdot-me]

I don't want to hear what JP has to say. The lawsuits, the lies, the overall sleaziness of his character--this material does not interest me. Interview someone else instead. CmdrTaco?

Why.

[warmenhoven]

Why should I care about what this man thinks? A man who has gone out of his way to see that a competitor (PacketStorm) with a better product (better info) is put out of business? This seems like a Microsoft tactic.

You're putting words in my mouth.

[FallLine]

Sigh, you walk in midstream, put words in my mouth, and act like you should be an arbitrator. A couple points:

1) I put "fact" in quotations for a reason. Mainly because "fact" seems to have a very special meaning for mochaone. If you had read previous comments of his, you would understand this. For instance, he tells me that I have no "proof" that the US tort system need adjustment. Despite my being able to cite numerous companies that have been adversely affected by huge awards...including ones owned by family and friends. Yet, at the same time he effectively states that corporations are "evil" and need to be restrained by force of excessive lawsuits. That is just the tip of the iceberg, and low resolution at that...

2) Slashdot can do whatever it wants to do. That does not mean that I have to remain silent about it. I don't need any proof to say that I, and many others, are growing discontent with the editorial control on slashdot. If the KKK were to be given a podium on slashdot every other day, you're not going to spend hours trying to "disprove" every one of their claims. You simply KNOW it to be untrue, and have better ways to spend your time. Instead, you express your discontent to slashdot; in the hope that, with enough similar complaints, action will be taken. I simply know what Katz is up to, and I refuse to contribute to the problem (e.g., being on the other end of the flame fest doesn't extinguish the flames). Slashdot is not usenet afterall; it IS moderated and editorial controls are used.

3) My problem with JP has NOTHING to do with his use of unsubstantiated claims. JP (whom I know) flat out lies and intentionally distorts the truth. The problem does not lie in the proof, it lies in the person. He is a hack. So to compare me to JP is nonsense.

4) Katz doesn't use "facts". His position is certainly not that of the status quo--he is infact very much of a liberal*. You should try reading his drivel for a change. Futhermore, I'm not writing an article, merely a comment. Because of size and time constraints on slashdot, and particularly its temporal nature, I'm not going to spend a great deal of time "disproving" some silly point.

5) I don't purport every one of my statements to be scientific proof. That is an unreasonable standard, and nothing would happen if every comment had to fit to such a standard. Slashdot is simply not the forum for that. The fact is that there IS utility in a forum with REASONED debate, even if you don't have statistics to back up your claim. You can still develop an argument. However, that by no means, means that it must be swallowed whole and without inspection.

...anyhow, I've wasted enough time on slashdot for a couple days. Bye

Mr. JP

[Filgy]

I was just wondering what you are going to do if someone actually decides to take you up on an offer to go to court, how would you actually afford a lawyer and court costs as I have read that you hardly have any money to your name. P.S. I say Roblimo sets Ken Williams up for an interview after this poor excuse for one, I would be interested in hearing some of his views on this subject as well as others. --If you have any legit replies, email me them as well, thank you.

Programming.

[giggab00]

JP,

Might I ask if you can code in any other languages aside from HTML?

JP and the University of Pittsburgh

[Manhattan+Project]

The Times article mentioned JP's run-in with Pitt CIS. Although I am not affiliated with CIS, I do remember this hoopla.

JP was in a lucky position of being among the first Pitt students to have a dedicated connection in his dorm room. He set up his Anti-Online web page, which at that time contained a little bit of information about Windows insecurity, nothing original, and sought advertiser support and link sharing. Eventually, he had users downloading software from his machine, at Pitt's expense, and advertising revenue from activity at his site.

Understandably, the University noticed this and asked him to stop. Dorm rooms weren't meant to serve commercial sites, in their opinion. They took his connection down because it actually violated the usage code. He claimed it was an important resource. CERT, they said, is right down the street.

Through heat from a friend of his at the Pitt News, there was a commotion made about it and the uninformed urged Pitt to put it back up. We had to read editorial after editorial written by his friend, as though the rest of the PN actually cared. He then dropped out of school with venture funding.

During this commotion he tried to show how punk he really was by demonstrating that there were weaknesses in Pitt's non-production NT system. Pitt ignored these actions, but they didn't have to. The things he demonstrated were things that have been known before NT4 was released. They were things that any respectable NT administrator, especially CIS, would have secured in a production machine. It is highly doubtful in my mind that JP possessed any real knowledge of computer security, he only knew of already-known security exploits.

At best, he demonstrated to Pitt that there are punks who want to prove a point, and Pitt has added superfluous security enhancements just to be on the careful side.

My question for JP is more along the lines of: Do you really think that you're doing any real service, or is the site just ego-perpetuation?

would a security expert be vulnerable to winnuke?

[matman]

man, when JP was buggin #enforcers about analyzer (hacker in isreal), they were testing his box and he'd left it vulnerable to pretty much all of the DoS exploits known at the time. (of course, all of the windows ones at least :)

I wouldnt trust this guy to reccomend security practices to anyone.

Analysis of a AntiOnline User

[kspett]

[This is part of an unfinished letter I was in the process of writing to AntiOnline awhile ago... even before the Packet Storm buisness. I am very confident that it is an accurate evaluation of the kind of crowd sites like AntiOnline attract.]
Hello.
I attend a high school here in a suburb of one of the major cities in the united states. Almost everyone here has a computer and it is just as common for them to subscribe to an internet service provider. Lately, it seems that there are many of these teenagers (or even pre-teens) are interested in computer security. (Or so they claim.)
This in itself is not surprising. Computers have played a large role in the shaping of twentieth-century America. (If I keep talking like this they'll put me on the Discovery Channel.) Computers are everywhere. In the corner of every billboard is a world wide web address. You can not go through a box of frozen waffles without being berrated at to "Visit www.cyberwaffles.com for the digiwaffles experience pushing binary envelope!" (I do not know if it exists. If it does, please run to your local establishment of religion and _pray_!). Schools, the establishment where those of the noted age spend hours of each day, are now inseperably intertwined into the ubiquitous (Yeah, that's right kid, reach for your dictionary.) computer-culture of networks, servers and databases.
Another facet of life that teenagers often experience is rebellion. Everyone wants to be James Dean. Marilyn Manson, Korn and Ozzy Ozzbourne* are all examples of rebellious outlets. Others include shoplifting, cigarettes, and flavor crystals in Cinn*a*burst gum. I know people who will commit pointless, but incriminating feats of idiocy in school and then revel in pride when they are called to the assistant principle's office. It's a stage for most people. Most people experience it some time. Beyond this, you can read the volumes of psychiatry on adolescent rebellion ( Cheesy psychiatrist voice: Do you do this to your parent's because it makes you feel like you're getting back at them, Bobby?).
This combination breeds a special type of teenager. It is easy to tell who is and isn't. Let's see here... People of this type often...

o Claim to be "Hackers, Hax0rz, etc."
o Use Microsoft Windows (And every now and then a Mac user.)
o Pirate Software ("Warez")
o Have simple knowledge of the way that MS-DOS and Windows systems work. (i.e. Modify Autoexec.bat, win.ini, etc.)
o Have intrest in "anarchy"-type information. (Jolly Roger-Anarchist cookbook, etc.)
o Use AOL or SLIP/PPP type network connection.
o May use viruses
o Use simple "hacking" programs

Let me explain these points. First, everyone has some definition of what a hacker is. (A definition which is mostly wrong.) There is all kinds of media surrounding these misconceptions. I will list a few:

o Movies : _Hackers_ (The worst of them), _The Net_, _Masterminds_, the movie in the works by Miramax about Kevin Mitnick, many, many made-for-tv-movies.

o Books: _Secrets of A Superhacker_, _The Happy Hacker's Handbook_ (please whatever you do, don't read this), _Cyberpunk_ (Kevin Mitnick has been in jail a long time unneccassarily and John Markoff helped put him there.), _The Cyberpunk Handbook_ (to the point of hilarity), and many, many "cyber-novels" (a phrase of Upright Citizen's Brigade Fame).

So everyone is pretty sure a hacker is someone who breaks into computers, right? Wrong. See the _Jargon File_ or _The New Hacker's Dictionary_. Anyway, these troubled youths choose to identify themselves as "hackers", because in their definition, "hacking" is what they do.
On to the flawed existence of Microsoft Windows. Windows is the most common operating system on the face of the earth if I am not mistaken. Real hackers, whenever remotely possible, do not concern themselves with Windows. Go get Linux. The fact that the these who claim to be "elite" are using a operating system that is the equivalent of a sanitarium with padded walls and crayons for writing letters can be used to prove that these "hackers" are really technically inept.
Software piracy, a.k.a. "warez" is a common activity of these faux "hackers" because it gives them a sense of doing something that is wrong and more importantly, illegal. This is easily attributable to their rebellious nature, which was discussed earlier. Here I will note the importance of flashy graphics. I have seen many, many "hax0r" webpages that are done entirely in Adobe Photoshop with nothing but selection and Alien Skin Software EyeCandy plugins. Most of these pages (probably yours if you used lots of EyeCandy) have *no* element of graphic design whatsoever. It is easy to impress these so-called "hackers" with this kind of design. They thrive on social support for self-confidence and attempt to impress each other with these pointless images. This is why Adobe Photoshop is a common item on "warez" pages.
Everyone has used computers. Some people know more than others. In this case with the kids I am discussing, they may or may not know more, but by only a thin margin. It is even possible that they may know BASIC programming. Their peers see that they have (slightly) surperior knowledge and may express admiration. This is what builds up the whole "elite" attitude. No one likes an egomaniac.
Anarchy files is a simple extension of the need for rebellion. No one really needs to know how to make napalm. No one reading this, at least. Intrest such as these are purely childish and even less justifiable than software piracy. If the government ever makes an organized attempt at complete totalitarianism, the only thing you will be able to do is insert your head between your legs and kiss your sorry ass goodbye.
The single most popular isp among these wannabes is probably aol. AOL is a terrible company (although they did score points with the Netscape open-source issue) and is the least desirable access provider anywhere. I would rather live in North Korea and eat dog than show up on someone's server log as coming from an aol ip address. Aol isn't always the way modus operandi, though. But reagrdless, they will, with few exceptions, always use a SLIP/PPP networking connections. Why is this relevant? Because it shows their technical hopelessness. I garauntee you that you can sit any of these "hakz0rs" down at a bash shell and the first thing they will try to do is type "win" or maybe "dir *.exe" and finally "help". They need their precious gui interfaces because without them they will drown in their sea of bad MS-DOS syntax. This is statement can be supported by their love for cheesy graphics. Do you think most "31337 d00dz" optimize their sites for Lynx? I didn't think so.
Computer viruses. Personally, I think that anyone that has taken the time to learn assembly should write themself a microkernel so they can network their toaster ovens or electric toothbrushes or do something at least semi-productive. But alas, it appears some insist upon pointlessly annoying innocent computer users. Not that these people that are capable of producing such programs are common in "hak3r" culture. Virus distribution is just another way to feel rebellious and badass while in reality it's the equivalent of setting random people's homes on fire. Pretty cool, huh?
AOHell, WinNuke, port scanners, Back Orifice, the list goes on. It appears that every now and then one of these kids actually figures out the winsock control in Visual Basic and in a malevolent orgy of simplemindedness produces another one of these idiot machines. (My sincere apologies to the l0pht; I don't care how many CERT advisories you've caused, you still can't spell.) I program. In C. No, not Visual C++, that doesn't count. Try the GNU compiler for a real programming experience. Lost without your anarchy symbol pointer and some buttons to push, huh? All of these programs are simple to design. WinNuke is something like five winsock.dll calls, I believe. Back Orifice isn't the genius it's made out to be. Wow guys, I'm in this guys hard drive! Remote access utilities are very common. Back Orifice is not the first or the best,, by any measure. The only difference is that Back Orifice makes a few registry calls, uses datagrams and runs transparently. The people who use such programs think that their designers are really "l33t", when in truth they are just simple socket programming exercises. No magic. The vast majority of the so-called "hacking" population does not know how to program anything at all and uses these programs without caring how they work. Where's the hacker spirit at?
If you meet any two of those conditions, with exception to numbers two, four and six, I would immediatly seek out psychiatric help for your immaturity.
I have now defined, and hopefully clearly so, what I think of most people my age who call themselves hackers really are like. I meet these types of people in alarming frequency. A few weeks ago another student told me, and then when I told him he was wrong *insisted* that the reason he could access the MS-DOS shell was because of an error in the *server* software. I'm sure. Now I know why the network at my school is protected very well. It doesn't need to be with people like him. Virus protection maybe, but I wouldn't worry about the bindery too much. These people constantly are asking me "How do I hack the school's network?" or "Do you use Back Orifice" (always mispronouncing "orifice") and lately, it seems the question has been "Have you been to AntiOnline?".

[I have not reread this before posting (yeah, I know, poor form) but I am quite confident that it is still an accurate representation of the facts and what I believe. /Please/ email me with feedback, questions, comments, or job offers.]


Kspett

Flamebait?

[the+red+pen]

Y'know... I tried to be very focused with this criticism, rather than saying "Slashdot sucks." Obviously a waste of effort, as any criticism is clearly not tolerated.

Maybe there's another moderator out there with some remnant of intellectual honesty (careful, Those Who Run Slashdot(tm) may yank your moderator status without warning).

Oh, yeah, a question....

[kspett]

I guess my real question here is whether or not JP disagrees with this statement and how. I would like to know how JP's analysis differs from mine. I would like to know whether he considers himself better than those that visit his site.


Kspett

communities

[quux26]

Forgive me for barging in at the end, but I just have to take exception to slashdot not being a community. I can't think of a single way in which it does not qualify. Is the ham radio set not a community because they don't meet?

Your post seems intelligently worded (I can't speak to content, haven't read the whole thread), so it stuns me that you could make such an assertion. Not trying to flame at ALL, just ...stuns me.

My .02
Quux26

Re:communities

[mochaone]

Thank you for agreeing with me. See my response to Signal 11's post for my definition of "community".

Litigate

[kspett]

Sue for libel/harrassment.
At least look into it.


Kspett

My question is:

[Vryl]

"If jp is such a loser, how did he ever get ops on #hackphreak"

I have read a lot of info on attrition et al about him (including the /. bit as well, and have wondered where he ever got his 'cred' from.

His history files on attrition (or was it hnn?) are as funny as hell tho . . .

-- Reverend Vryl

Re:My question is:

[Accipiter]

That's a good question. At first, he was a regular op, but the channel owner (RLoxley) decided to make him the channel's senior op. Antionline started out as a shitty hole-in-the-wall site on PITT.edu's servers, and his popularity exploded when PITT kicked him off.

Seeing how his public image surged, Rloxley made him the one and only senior op. When I openly (quite openly) voiced my opinion on JP's knowledge, skills, situation handling, and occasionally sexual orientation, I was removed as an op.

Rloxley thankfully saw the error in having this asshole run the channel, and JP was removed. at this point, JP took over the channel, banned *!*@*, and pretty much threw a tantrum. In the meantime, Antionline was growing from a small useless waste of bandwidth into a big one.

The answer to your question is this: A long time ago, JP was a reasonable person. That's when he got ops. Then he turned into a media whore. Whenever JP removed me, RLoxley repeatedly re-added me. Now, myself, alienbaby, doxical, and L1thium are senior ops. JP never comes into #HackPhreak anymore. Whee!

-- Give him Head? Be a Beacon?

*** moderate this UP! ***

[RelliK]

this is hilarious!

look at the questions

[quux26]

Slashdot is giving you the opportunity to quiz your nemesis on all those things that are bugging you...

I think, judging by the questions, that nobody really has anything to say to JP except 'fsck off'. What can we get from quizing him that we don't already know? Do you think it's possible for anyone to think *less* of him??

/. takes up about ...perhaps 60 minutes of reading/online time each day. I fought my friends when they predicted dark skies after the purchase, but I think this might be the linchpin to admitting they had merit. I'd like to say this is just a lapse in judgement, but I think maybe its time to find a site that is represenative of what is important to me as a coder, hacker and geek.

But maybe I'm being too harsh. Some of their recent articles have been wonderful. The LinuxChix and subsequent 'how to get a girl' articles were refreshing. The DOJ coverage has been *very* insightful (mostly due to ./ member postings).

I guess I'll just have to see where this trend is going.

My .02
Quux26

./ editorial team must explain themselves

[Woko]

I'm left wondering if this is the equivalent of a Jesse Berst column deliberatly designed to provoke a high number of banner hits. I can only suggest to the slashdot editorial team that if they cannot write a well reasoned response to the majority feeling that JP has no place here, then the interview should be cancelled. If they can, perhaps the majority should be reading somewher else that doesn't cater to people like JP.

Two questions.

1. In your numerous interviews with the mainstream media, do you purport to be speaking *for* the (h|cr)acker community, or merely offering your opinions *about* that community?

2. There seems to be a general hatred of and lack of respect for you pervading most of the hacker community, as evidenced by the postings on /. whenever your name is mentioned, "wanted" posters with your face on them at the most recent Defcon, etc. I gather from many of your interviews and news stories about you that you feel the same way about most hackers. Given this fact:
a. If your answer to (1) is "for", what qualifies you to speak for a community which you despise and which despises you?
b. If you answer to (1) is "about", do you acknowledge this animosity between yourself and the hacker community when speaking to the mainstream press, or do you represent yourself as an objective source of information?

JP is silly

[redmist]

JP is a very questionable character. I agree with the people who think that the best way to repay JP is to completely ignore him.
JP is just a pinko commie bedwetter.


.{redmist}.
-------------------------------------------------

Slashdot's interviews

[krahd]

I have no question for AO's John Vranesevich, but I'd like to say a few things about slashdot's criteria used to select people for interviewing.
I've read a lot of complaints about interviewing JP and the hacker wannabe from MTV's show.
I do believe those comments show that interviewing JP (or the boy) was the right choice.
I mean, if the IT scene has such a hate on someone, it's always worth to hear what he has to say (and remember, noone is guilty until proved and everyone has the right to defend himself).

Anyway, I must say that I'd like a selection criteria based on the positive aspects of the interviewed.

-- krahd

Learn from Voltaire, Jefferson, and others people!

Jesus fucking christ!

People, calm the fuck down! 400 posts of nothing
but "this guy sucks, I hate this guy, yadda yadda"

It's like, you people think this guy should be in
jail and doesn't even deserve the right to speak or be interviewed.

I've never seen such a fucking LYNCH MOB in my life compared of people WHO SHOULD BE MORE CIVILIZED. Why do Slashdot people think they are "above the average person" You've shown that you're just as vulnerable to mob anger as "the common man", if not more so, hiding behind your computer screen.


I'm all for letting people have their right to speak, and engaging them in rational debate, or discussion.

Slashdot is about SHOUTING PEOPLE DOWN.

"I do not agree with what you say, but I will defend to the death your right to say it." (paraphrased) Voltaire?

I applaud Rob et al for having to courage to do this interview. You know, 60 Minutes and 20/20 have interviewed some disgusting people in their time!

Re:Learn from Voltaire, Jefferson, and others peop

[radja]

A lynchmob? no.. When was the last time you heard of someone being beaten to death with pluche penguins by a group of rabid terrorists known only under the slightly cryptic sign "/." ? Or maybe.. we just like to shout.. well.. you figure it out. Shouting is just loud speech, and aren't we all in favour of free speech, even if it is a bit loud?

//rdj

Re:My feelings about slashdot

[monstar]

*yawn*....complaint generator.

Please Moderate That Up.

[Wntrmute]

But it won't be since it disagrees with the prevailing attitude to this interview.

I have to respond to this as well... The whole responce to this interview has caused me to become very disappointed in the slashdot readers. We are supposed to advocate open source, but apparently not free speech now?

I've followed the whole AntiOnline/Happy Hacker/Packetstorm/Attrition thing for quite awhile now, and I disagree with JP on pretty much everything. But, that doesn't mean that people don't have a right to their side or the story.

Applause is due to Rob and company for taking on such a controversial interview. Heck, I'm impressed that JP was willing to do it. He has to know that it is gonna be rather hostile, as /. has been very critical of him in the past.

Hell, here's your chance to either 1) ask some technical computer security questions to see if he gets stuck, or 2) Try and get him to justify his actions that you disgree with. Take advantage of it.

Anyway, here's my questions:
1) Why do you belive you are qualified to be a computer security "expert"? What justification is there for you being concidered a credible source?

2) In dealing with the Packetstorm incident, why did you not attempt to contact Ken Williams first? Instead of going directly to his upstream, better Internet ettiquite would have been to attempt to resolve your problems with the site maintainer. If someone had a problem with your site, wouldn't you prefer that they went to you, instead of going over your head and talking directly to StarGate?

-Wintermute

Re:Good for Slashdot!

[mistabobdobalina]

i love this analogy.

This is silly

[F0XFIRE]

OK people, this really is getting out of hand. All of you claiming how Slashdot has "fallen", how can they even think of interviewing this guy, yadda, yadda. "Slashdot has lost it's vision". What vision? It's a site for people to read about current news, and if they like, to comment on it. Maybe I just haven't been around long enough, but that is what it has always been to me, and still is. So something comes up every once in a while that you don't like? Waah. Don't read it. Some others might actually be interested. As far as Vranesevich goes, so he gets some Slashdot time to answer some questions. Big deal, given the amount of criticism he gets here, it's only fair to let him respond. And a lot of the interviews here have been really good, and I look forward to more in the future.

(This is probably a rehash of other peoples questions, but here goes)
For Mr. Vranesevich: There is a strong sentiment against you in the online community. What do you feel are the key reasons for this and how do you respond to them? Do you intend to do anything to try to alter this perception?

For the Slashdot maintainers: There has been a lot of flack thrown out here, but I would ignore it. I do think it would be cool to see some of the people recommeded for interviews in the various postings here, along with possibly some writers such as Steven Levy, or William Gibson (or have they been done already?)

For the people who now hate Slashdot because of this interview: What a stupid reason to leave. I for one won't miss you.

Why haven't you taken legal action?

[nano-second]

You should seek the advice of a lawyer. You certainly have a couple parties that you could prosecute, if your story is accurate. It would take time/energy/money which you may not be interested in spending, but I think you have reasonable cause.

First of all, if JP posted libel on his site, and didn't make an effort to verify it OR (more importantly) post a retraction/apology when it turned out to be false, then you have a case against him. And secondly, the employer who fired you is certainly on shaky legal ground. Admittedly, I don't live in the States and your laws might treat that differently, but I don't think they are allowed to fire you based on false statements about your activities... particularly if you have never been arrested/charged by the FBI and if that was their motive for firing you. Of course, it's possible they may not have explicitly used that as the reason, they could pretend it was something else, but it IS worth looking into. That sort of thing is not only personally damaging, it can make it difficult to find employment in the future.

Of course, without proper legal advice, or all the details, it is hard to judge what sort of evidence you'd have, or if you could prove your story satisfactorily to a judge. Heh, ironic... JP is always threatening to take people to court for slander, maybe it's about time he got a taste of that.
---

Who, JP?

[FallLine]

If you mean JP, his nickname was JP. I knew him from #cha0s on undernet and have had run-ins in #hackphreak and the like. That was like 3-4 years ago. He was certainly incompetent then (far worse than the company he kept), though he tried his hands at being a script kiddy. Since that time, I've seen JP do and say things which make his incompetence glaringly obvious. He hasn't really changed at all as best as I can tell; Same personality, different symptoms.

I believe he stopped using IRC recently as he acquired too many enemies, particularly packet pixies/script kiddies. Though he evidently goes on anonymously or has someone else go for him, so he can get his script kiddy leads.

eek... calm down!

[nano-second]

(I know this is offtopic, but it needs to be said in this thread)

1. You don't read Katz's articles, so what's the problem? If others enjoy them, then good... it shouldn't bother you that other people perhaps like reading what he has to say. If he takes "crtical mass" from other articles, it's becuase lots of people are interested in what he has to say. And if you dislike him so much, go to your preferences and set it so you don't SEE his articles. There is always a better solution than getting upset.

2.You have the right to leave slashdot. As does everyone. But slashdot has a lot of readers. If a few leave because they don't like what it has become, it won't really matter, many more will join becuase they do like what it has become. Things change with time.

4.FUD from Bill Gates or the KKK would not be relevant to Slashdot. You may not like Katz's articles, but their topics are relevant to the Slashdot crowd. They are generally based upon articles posted on Slashdot by other authors. They are his thoughts/opinions, but that is what most of the features are, whoever writes them. Everyone (including you) is entitled to their own opinion.

5.Why should you be exempt from using facts and proof? That seems a little far-fetched. If you want to convince others of your point of view, naturally they will want more than opinions. You seem to think you "know" the minds of the editors. This seems very tainted by your opinions, and facts of some sort might be useful to explain why it's more than just an opinion. You also say that a "significant portion of the mature readership objects to Katz's articles". This statement in particular seems to need something to back it up. What is this significant portion and how do you measure it? How do you know that these people belong to the mature readership? Is the mature readership any more important than the newer readership? Opinions and ideas need to be quantified or explained before they have a chance of acceptance.

My reasoning for this post is that you seem so upset. I am not saying that you need to have a different opinion. I am just suggesting that you need to allow everyone else to have their own opinion and be allowed to question yours.

A few minutes of reflection on my general statements might help you to understand my opinion in this matter:

There is always a better solution than getting upset.

Things change with time.

Everyone (including you) is entitled to their own opinion.

Opinions and ideas need to be quantified or explained before they have a chance of acceptance.
---

Feedback

[nano-second]

Ok, you asked for some feedback, so here it is. I don't mean offense by any of this, I just want to help you improve your letter/article.

First, answer these questions:
What is the point of this letter?
What do you hope to accomplish with this letter?
Hopefully, with these two in mind, you can trim your article a bit. At the moment, it seems to be rambling thoughts. (I realise you said you hadn't re-read it).

My take, after having read it all, is that you want to associate those who read AntiOnline with those who are script kiddies. Fair enough. But it takes a long time to get to that point. (Do you really think someone as cuckoo as JP will learn anything from this letter anyways?? I doubt it personally).

A lot of the discussion of teenage rebellion and what computers mean in the 20th century isn't really neccessary. It doesn't further your point, and is rather obvious to most. Keep the intro that you are a high school student etc, though, that's good, it gives your opinions context.

Later on, you sorta slam AOL users and people who don't program in "real" languages. Don't bother, it just makes you look petty and again, it doesn't further your point. Condense your description of the "hax0r d00d" to one paragraph, rather than spreading it out, and then get to the good bit at the end... where you list the questions people ask you. That is effective and makes the point nicely. If you do this, I think your letter will be more succinct and effective.

I hope this helps. :) It was sincerely meant as constructive criticism. Although, I would suggest you consider your audience... If sending this letter makes you feel satisfied, then by all means do it, but I rather doubt it will have any effect on the behaviour/content of AntiOnline. I don't think they are open to criticism or interested in being a useful security site.

ps. My opinion on something: Just because something isn't text oriented doesn't mean has no value. Adobe Photoshop is an excellent program, although I personally prefer the GIMP. :)
---

Don't pull my comments out of context.

[FallLine]

I was responding to specific gripes of mochaone, and some which you can't see in this thread from previous arguments with him. Context!

I do not get upset over this stuff. I was making a point, that I see a general trend, a focus of trying to create flamewars to increase banner revenue. This trend results in an increasingly singular viewpoint, that of geek fanaticism.

It is my belief that the slashdot editors KNOW what they're doing; thus I don't need to prove it to them. Instead, I made a financial argument that it could hurt them in the long term. The mere fact that they generate increased hits in the short term does NOT mean it is healthy in the long term. For example (though extreme), if I were to put the KKK up on slashdot, to spread their propaganda. I have no doubt it would generate a thousand comments. If I kept doing this on a regular basis, the readership would get fed up--they would leave en masse.

I am not putting a gun to the editors' heads, my points remain open for consideration. The mere fact that I lack exact statistics does not make my efforts worthless. Also, I have OBSERVED a number of people, those whom I believe to be the more worthwhile posters on /., who are fed up with this. This can indeed be indicitive of the population. It remains open to investigation. If they wish to ignore my arguments, time will prove me right. But then again, as an AC pointed out in this thread, maybe they're looking for an IPO (et. al) exit...

It is ironic that you purport that Katz's articles are apropos for slashdot, yet the KKK or Bill Gates is not. What facts do you have the back this up? What proof do you have that Gates' claims of MS superiority are indeed FUD? How does this differ from my claims that Katz's articles are essentially anti-establishment FUD (though my comment presumes that the editors already KNOW)--with an immature sycophantic geek-cheerleading-squad?

If you assume that user replies/moderation are an accurate indicator of the intrinsic worth of a comment, then I am significantly better off than yourself. My comment/Karma history demonstrates this well. Or would you have me believe that, perhaps, there are other criterion? You can't have your cake and eat it too.

I'm unsure what you mean...

[nano-second]

Ok, for the most part, I agree with you. I personally don't like Katz's articles. I find that he take an idea adequately discussed in a story and blows it out of proportion to create a hyped and silly opinionated feature. However, a lot of people seem genuinely interested in reading his articles, so I think it seems reasonable that he continue to post to slashdot. Neither am I really interested in "promoting" John Vranesevich. But I think that slashdot is a good site, and I don't HAVE to like everything they do, to still find worth in it. I think the post I am replying to seems a lot more thought out than the one I responded to earlier, although admittedly, I may have missed some of the context.

However...
You end with what seems an unrelated comment, with little basis:

If you assume that user replies/moderation are an accurate indicator of the intrinsic worth of a comment, then I am significantly better off than yourself. My comment/Karma history demonstrates this well. Or would you have me believe that, perhaps, there are other criterion? You can't have your cake and eat it too.

Er... where did I say anything about that... maybe you are infering that I meant a lot of people responding to Katz's stories meant they had intrinsic worth ?? That's my only guess at an explanation... Replies can be an indication of a good comment, but that is a very unreliable criterion. Moderation is not infallible (thus metamoderation), but a heavily moderated comment indicates what slashdot users think. Whether we agree or not, the moderation system seems to regularly bring out good posts, so I'd say that on the whole, it does have SOMETHING to do with the intrinsic worth of a comment.

I doubt you looked at my Karma history... I am guessing you assumed that yours was "significantly better" because my article did not have an automatic +1. Actually, I just make liberal use of the "No Score +1 Bonus", unless my post is directly on topic, which it isn't really, in this thread. As for the worth of my comments otherwise, I will leave that up to the moderators and individual readers to decide on a case by case basis.

In any case, I don't really know what you meant by this last paragraph, perhaps if you could explain what it was in reference to, I could better explain myself.
---

Ok...

[FallLine]

It would be one thing if I really believed that both Katz and the editors are sincere in what they write, but I don't think this to be the case. I believe Katz is effectively telling the slashdot-cheerleeding squad whatever they want to hear(I've seen Katz speak out of both sides of his mouth); I object to that on principle. But beyond that, as I've already stated, I think it detracts from slashdot in general, even if I ignore Katz.

I did view your Karma/comment history briefly. You were giving me "pointers" on how to write, implying that mine don't deserve the time of day. My first comment on this thread has recieved a score of 4. And you seem to imply that whatever the readership comments or moderates is good. I see a certain paradox in saying that Katz's articles are worthwhile because they draw moderation and comments, yet saying that mine, which draws moderation and comments, is not. Or yours....or whatever...

...anyhow, I've got work to get done today. Bye

Re:Ok...

[nano-second]

I did view your Karma/comment history briefly. You were giving me "pointers" on how to write, implying that mine don't deserve the time of day. My first comment on this thread has recieved a score of 4. And you seem to imply that whatever the readership comments or moderates is good. I see a certain paradox in saying that Katz's articles are worthwhile because they draw moderation and comments, yet saying that mine, which draws moderation and comments, is not. Or yours....or whatever...

Ok, My original comment was a reply to one of yours, thus its contents was intended for that comment and was no reflection on your other comments.

You have misinterpreted what I said. Here is what my second comment said:

"Replies can be an indication of a good comment, but that is a very unreliable criterion. Moderation is not infallible (thus metamoderation), but a heavily moderated comment indicates what slashdot users think"

1. I stated that comments can be an indication, but are NOT reliable. So that dispenses with your statements regarding what comments prove.
2. I also said that moderation IS often a good indication. BUT, articles/stories don't get moderated! Thus, none of what I said can be considered to pertain to the "worth" Katz's articles.

As for giving you "pointers". Only one point in my original post was intended for that, and that was the point regarding the use of facts and proof. I stand by that. I don't think it's reasonable to expect people to accept your statements without proof (or at least reasonable explanation). You can hold your opinions without proof, if you like, but it's to be expected that people will question their validity. I may not know the context that generated you saying that you didn't need proof, but I still think it sounds foolish.

yes, I need to work too. bye.
---

Guido da man!

[homunq]

C'mon, interview GvR, pretty pretty please?

Re:Curious...(was: Re: HFG)

[netmask]

Sure am. Doesn't it seem logical I would follow up on my own posts?

For your selective viewing pleasure..

[Kitsune+Sushi]

Conversely, it seems odd to me to respond to such a long, drawn-out thread without having read entire said thread. During any long, drawn-out argument, one side or the other is likely to slip up with regards to examples, wording, or some other semantic error. No one is perfect. I'd personally recommend reading the entire thread next time, as it would most likely shed a little light and give you a much better perspective on the argument as whole. This particular situation would have been no different had you taken the time to do so.

ANTIONLINE WAS BLOCKING SLASHDOT REFERRALS!!

[Wolfrider]

--I understand why you feel this way, but /. was trying to get a point across... Until recently, AntiOnline was really living up to its name == It was BLOCKING referrals from certain sites, including Slashdot. :P

Re:jp fucks meinel in the goat ass

[DryGrain]

right up that goat ass. check http://www.tg0d.org and http://www.schematic.org for why JP and CPM are wastes of bodies and air.

A few points...

[FallLine]

The moderation system on slashdot is largely broken. The fact that you feel compelled to protect yourself from it speaks volumes. Though you seem to see flaws in slashdot content management (comments/articles/moderation), you still want to extend Katz the benefit of the doubt because he's got fans. Yet you're willing to write mine off with a shrug. Though they're slightly different, it is effectively the same issue. Majority whim v "right". The standard should not be whatever is popular at the moment. That is to say, just because the "more people" appear to be happier with it doesn't make it "right".

Futhermore, what majority desires is not neccessarily better for them. The majority may desire to do geek-cheerleeding, but it hurts everyone as those who're most reasonable are put off by it--causing inbalance. They may be only 5% of slashdot, but in BALANCING slashdot, they carry a great deal more weight.

There is no way to "prove" any of this, at least without extensive effort. That does not mean they're worthless. The majority of slashdot comments, yours included, don't live up to this standard of "proof". You can, however, draw thought and futher review.

My original comment was largely targeted at THE EDITORS. Since it is my belief that the editors know what they're doing, I provided the editors with a RATIONAL argument as to why they MIGHT not want to exclusively pursue the whims of the apparent majority (if Katz-comment-traffic-people are indeed a majority).

Re:what is HFG??

[burrows]

Some group of hackers that were not nearly as cool as the Ashtray Lumberjacks. heh.

He was DoSed about 2 months ago, for 6 hours...

[Dr.Sarcastro]

Expert my ass.

W. Richard Stevens

[grappler]

Somehow, I don't think W. Richard Stevens would make for a very good interview.

Please don't moderate this as "funny" because it isn't. I'm just saying that your list hasn't really gotten the fine-tooth comb treatment.

--
grappler

Wow-ee...

["LEVIATHAN"]

Purrty low, but then again, this is to GRILL JP, so nothing was really even serious in this. One big orgasmic flamefest. I can add my own in, such as that JP (I hate his last name... do you notice?) sucks great whale dick, but we aren't here to do that, now are we?

Seriously, JP has proved himself, to the "inner circle(s)", as well as most of the outer ones, as the biggest fake SecAdmin/SysOp/"hacker" the world has know in the past five years. Anyone who spends even two months (being mature and) studying hacking would quickly figure out that JP really shouldn't exist in the world of Hacking, and the broad range of topics it covers. He has done masses amounts of shit, including but not limited to taking down Packet Storm, in a messy, go-straight-to-head-honcho-and-make-a-fucked-up-st ory way.

If that isn't all, "mainstream" media (AKA MTv!!!) puts him on the same phreakin' screen with Shamrock from Parse.

Quick thought: So is JP+AntiOnline "mainstream" media? jumps into shit without thouroughly studying it?

For the short term, which works hand in hand in the long term, you all should blow off your steam on this fake. But we shaln't do this for long, as soon as we're done, Shun AntiOnline, and bring the mainstream media's attention to EXACTLY what this FAKE has done, and quote him as much as possible, and expect the second wave from the media, and then the dust settles, and JP is booed, hissed, and beat up off the stage, and his name goes down in the history books as a fake.

Uhm, at least in theory that all should work...

To speak of JPs knowledge from my perspective, he seems to have not a whole lot more than I do, which albeit would be only easy to research (what I don't know). routine shit like keeping up on patches, not running Winblows (Sorry, I have to, alright?), not letting the r* (rwho, rexec, etc) commands run, perhaps not even having his webserver close to his LAN, not having a static IP address also helps a bit.

And in some cases I see myself far more ahead (even in my young age of 14 1/2) in maturity to new issues (like Analyzer, the indian hacker) than JP (was)is.

Questions, on the other hand, I have none of for JP, as I wouldn't lay a finger of trust to his information, even if he said he took a shit 15 mins ago, I wouldn't trust it. (Bad example, I know, so sue me! Uhm, err, I take that back) I don't even want to ask how he got his lameass to this point.

So, that taken care of,

Blessed Be! --"LEVIATHAN"