Interview: Grill John Vranesevich of AntiOnline

Can you say "controversial figure," boys and girls? Within the hacker/cracker crowd, nobody stirs up as much noise as John "JP" Vranesevich, founder and owner of the computer security site AntiOnline.com. This is your chance to go straight to the source and ask John himself what's up with all the sound and fury that always seems to surrounds him. (Punch the "Read More" link to continue.)

Before you start posting questions for John, you may want to learn a little more about him. First check his Web site, AntiOnline. Then take a look at this story about him in The New York Times (free registration required). And, for a sample of the kind of animosity John has stirred up among some members of the "inner circle "hacker/cracker and computer security crowd, you might want to check this site, too.

We expect this interview to be full of fire. Fine. We have our flameshields set to "high." But realize that the questions we forward to to JP Tuesday afternoon are subject to our usual screening process; we're only going to send him the 10 - 15 questions deemed most interesting and/or relevant by Slashdot moderators and editors, so please try to be as level-headed as possible.

John's answers will appear Friday.

Explanation of Packet Storm

[davidu]

Many of us in the hacker community (not cracker) used the Packet Storm security site for information and research. You had it shut down for some alleged things in the /jp directory. Explain to us why you called Stanford to shut it down rather than dealing with the maintainer. What did you accomplish by threatening to sue other than futher harm your image and remove any creditbilily you had?
-Davidu

?

[mattc]

Why did you deliberately block links from Slashdot, HNN, and any other site who criticized you during the closure of Packetstorm?

Me? Quiet? HA!

[Accipiter]

Ok, normally I'll sit back and watch the interviews, maybe ask a question if I have an interest in what is being discussed. Also, let me take the time to say that I am a longtime reader of Slashdot, and it is easily my favorite website on the internet.

But John Vranesevich?

He is arguably the most despised figure in the h(cr)acker community, with Carolyn Meinel neck and neck. Both of them follow the same ideals and public image. What's that? Being a FAKE. Vranesevich has shown many many times that he has absolutely no clue about real computer security, and has been proven beyond a reasonable doubt in my mind that he goes to disgusting lengths to get a story, i.e.: "Hey, here's some cash. Hack that site, and let me cover it." (Attrition's site has remarkable backing for this theory.)

What's more, Vranesevich absolutely cannot stand being criticized. Any site which puts up content that criticizes, parodies, or shows Vranesevich to be a fraud, he throws a fit, cries, and threatens legal action. Attrition, Innerpulse, PacketStorm all have received threats. (At one point, Slashdot ran a less-than-flattering story about him, and I E-Mailed CmdrTaco letting him know that he quite possibly might get possible legal action from JP. (Nothing happened, but everyone knew it could have.)

You may be wondering how I know all of this. Well, a long long time ago, JP was an operator in a very large IRC channel on undernet. I happened to be an op too. The difference is, I still am. He knows I know him, as does everyone in the channel. We knew him when he was a small time loser. He's still a loser, but now just big-time.

Which is why I'm puzzled, amazed, and quite frankly disappointed that Slashdot chose him for an interview. He's not at all insightful, and can't offer any kind of intelligence to this forum.

-- Give him Head? Be a Beacon?

Here, let me help

[Kostya]

Hey slashdot editors! I know you are busy, and maybe that's why you thought interviewing JP would be a great idea. I've already posted a comment on why I think this is a very bad idea. So I thought I would try and be productive. Here is a list of people who are of the right caliber to merit an interview (that is to say, try interviewing great folk like this FIRST before wasting your time and ours on JP):

(from the 1999 Free Software Award Nominee page)

1. Tom Adelstein
2. Eric Allman
3. Lennart Augustsson
4. Stig Bakken
5. Donald Becker
6. Brian Behlendorf
7. Tim Berners-Lee
8. Jim Blandy
9. Craig Burley
10. Thomas Bushnell
11. Shane Caraveo
12. James Clark
13. Alan Cox
14. Miguel de Icaza
15. DJ Delorie
16. Theo De Raadt
17. Matthias Ettrich
18. Paul Eggert
19. Ralf S. Engelschall
20. Fred Fish
21. Olivier Fourdan
22. Fractint Team
23. John Gilmore
24. Andi Gutmans
25. Chuck Hagenbuch
26. Carsten Haitzler
27. Charles Hannum
28. Shawn Hargreaves
29. Geoff Harrison
30. Mike Heins
31. Joey Hess
32. Earl Hood
33. Jordan K. Hubbard
34. Dan Ingalls
35. Lars Magne Ingebrigtsen
36. Kyle Jones
37. Bill Joy
38. Alexandre Julliard
39. Mike Karels
40. Jeremy Katz
41. Spencer Kimball
42. Donald Knuth
43. Werner Koch
44. Alfredo Kenji Kojima
45. Jeffrey A. Law
46. Patrick Lenz
47. Marc Lehmann
48. Rasmus Lerdorf
49. Mark Linton
50. Paul Mackerras
51. Peter Mattias
52. Doug McEachern
53. Caolan McNamara
54. Kirk McKusick
55. Bram Moolenaar
56. Tobias Oetiker
57. Tim O'Reilly
58. John Ousterhout
59. Dave Rand
60. Brian Paul
61. Nicholas Petreley
62. Bernhard Rosenkraenzer
63. Alessandro Rubini
64. Dr Douglas Schmidt
65. Keith Sklower
66. W. Richard Stevens
67. Darryl Strauss, Zeev Suraski
68. Danny ter Haar
69. Andrew Tridgell
70. Jorrit Tyberghein
71. Bert Tyler
72. Guido van Rossum
73. Miquels van Smoorenburg
74. Wietse Venema
75. Paul Vixie
76. Patrick Volkerding
77. Tim Wegner
78. Jim Winstead
79. Jamie Zawinski
80. Phil Zimmerman.

Granted, some of these have been covered already, but maybe a handful at the most. I must confess to maybe knowing who 10% of these people are. I would sure like to know something about the rest of them. Just imagine all the cool stuff each of these people has to offer--why in the world are we looking to interview inflamatory, damaging people like JP?

Just trying to help :-) I figure 80 some odd suggestions should keep you busy for a while.

JP's general hypocrisy.

[Jeff-]

I have several questions which I will ask within the narrative below. The narrative is important to understand the context of the questions, and to support my arguments.

Several months ago I was raided by FBI for supposed involvement with the "hacker" group gh. The extent of my involvement was participating, as a caller only, in illegally funded phone conferences. JP, who also participated in this conferences, labeled me as a hacker, and a member of gh on his "news" site. Neither of these accusations are true. He has many more ties to this and other hacker groups than I have ever had. My first question is this; If you label me a hacker, than do you label yourself one? Are you in your little database of supposed computer criminals? Secondly, How can you pretend to be taking a stand against "hackers" while you are involved in the same activities?

My third question is in regards to your coverage of the situation. You posted unconfirmed information from an unreliable source in regards to the status of my employment at a prominent software development company. As a result of this I was contact by several news agencies, and immediately stereotyped as a hacker even though I have never illegally penetrated any computer system, nor had I been charged with, or accused of any crimes by the FBI. In response to this I granted one news agency an interview, which I thought went well, but also backfired. As a result of the negative press my former employer could not even consider allowing me to stay. My question being, Do you expect people to consider you as a reliable news source even though you report data which you receive through unreliable channels? And lastly, Did you ever stop to think what the impact of your coverage might be? It seems to me that in your rush for the big story you have failed to check for the correctness in your articles, and as a result of this you are hurting innocent people, such as myself. I'm sure this has gone on in other cases, but mine is the only one I have enough knowledge to comment on. I don't attribute these unfortunate events to you, but you certainly did not follow good news practices in reporting them. You have only served to injure my credibility and your own.

Lastly, have you ever considered what legal action may be taken against you for your involvement with these criminals? Do you even recognize the hypocrisy of your stance on hackers being one yourself by your own definition?

Sincerely,

Jeff