Re: [Full-Disclosure] The Hacker's Manifesto Reloaded

From: James Tucker (jftucker_at_gmail.com)
Date: 09/03/04

  • Next message: James Tucker: "Re: [Full-Disclosure] Empirical data surrounding guards and firewalls."
    To: the entrepreneur <da_entrepreneur@yahoo.com>, full-disclosure@lists.netsys.com
    Date: Fri, 3 Sep 2004 14:25:32 +0100
    
    

    A short piece of food for thought for all you hackers out there. This
    is not an attack on your livelihood this is merely a point for your
    consideration.

    It (the manifesto) does not explain why this information is relevant
    for me to read. or maybe I am unable to understand the part that does,
    if so please teach this willing student.

    Your manifesto seems largely similar to those written by many others.
    The attacks upon the security industry (which is required, whether the
    techs are good or not is a different matter) are largely unqualified.
    Please do not forget that businesses are formed due to the needs of
    other businesses or people and they serve others, this leads in a
    chain like manner back to the industries you would choose not to
    attack.

    Tell me how would you feel if you successfully stole enough money that
    you crashed an economy and power generation also stopped. An unreal
    scenario I know, but tone this back down to reality, and you realise
    that the things you are using are also directly related to the things
    you are trashing. In essence you are destroying your own world.

    It is business that makes computers, it is power that feeds the
    factories, it is these peoples money that pays the employees. The
    employees need health insurance if they want to survive, hospitals
    need their equipment, which in turn requires design, logistics for
    movement of physical items. The logistics companies need ISP's for
    their communications infrastructure, and banks to manage their money.
    The trail goes on. Do you not realise that many of the places you
    attack are merely part of the chain of business which supports the
    world that you love?

    A final point to further this, how far are you willing to go in
    causing people inconvenience? Every day people commit suicide due to
    stress caused to them in their business lives. Shutting down
    communications media, or any other business could have this effect (or
    at least contribute). Even furthermore there are situations where your
    actions may more directly affect the safety of individuals. Continuing
    to do so may then be compared to attempted murder. Still think you
    have any moral high ground?

    Finally the word manifesto means "a declaration of intent". I was
    unable to see any intended actions stated. In fact what I read more
    resembled a boast of money gained by actions already performed, and
    insult of lesser hackers and security professionals. For someone who
    should have a clear understanding of the need for accurate
    understanding of language (most important when the language is dealt
    with on a purely logical and explicit basis as with a computer system)
    you seem to not care so much about the accuracy of your written
    language.

    ---
    I am a student of security and this is my manifesto. I intend to have
    any hacker who tries to attack me for trying to provide an explanation
    of my point of view to them, thrown into jail for the longest sentence
    available under the laws of the country in which they committed their
    crime. This is my statement of intent, my manifesto, and it needs no
    end user license agreement or copyright. It is not unreasonable, it is
    not a declaration of war, it is a statement accompanying a point for
    discussion, nothing more.
    What do you think?
    On Fri, 3 Sep 2004 05:45:19 -0700 (PDT), the entrepreneur
    <da_entrepreneur@yahoo.com> wrote:
    > it says everything.
    > 
    > 
    > --- James Tucker <jftucker@gmail.com> wrote:
    > 
    > > why?
    > >
    > > On Fri, 3 Sep 2004 03:31:32 -0700 (PDT), the
    > > entrepreneur
    > > <da_entrepreneur@yahoo.com> wrote:
    > > > The following was written shortly after my
    > > > placement...
    > > >
    > > >                        \/\The Conscience of a
    > > Hacker -
    > > > Redux /\/
    > > >                       (c)CopyRight
    > > SuppaDuppaSecurity
    > > > Solutions.
    > > >                             *where do u wanna pee
    > > today*
    > > >                                       by
    > > >
    > > >                                +++The
    > > Entrepreneur+++
    > > >
    > > >                           Written on September 3,
    > > > 2004.
    > > >
    > > > Another one got bought today, it's all over the
    > > Wall
    > > > Street.  "Teenager Floated A Big Secuirty Company
    > > ",
    > > > "Hacker Paid After Ethical Hacking Of A Bank..."
    > > >         Damn kids.  They're all money whores.
    > > >
    > > > But did you, in your C Grade Economics Degree and
    > > > l4am3 technobrain, ever take a look behind the
    > > eyes of
    > > >
    > > > this professional hacker?  Did you ever wonder
    > > what
    > > > made him whored, what forces lured him, what may
    > > have
    > > > sold him?
    > > >         I am a professional hacker, look at my
    > > bank
    > > > account...
    > > >
    > > > Mine is a world that begins with money... I'm
    > > richer
    > > > than most of the other kids, this crap they buy is
    > > so
    > > > darn cheap...
    > > >         Damn underachiever.  They're all money
    > > whores.
    > > >
    > > > I'm a junior security consultant.  I've listened
    > > to
    > > > senior security professionals about how to be a
    > > good
    > > > hacker.
    > > > I spit at it.  "No, Mr.NiceGuy-CISSP CISA CEH, I
    > > > didn't show my 0day. I sold it..."
    > > >         Damn kid.  Probably leeched it.  They're
    > > all
    > > > money whores.
    > > >
    > > > I made a discovery today.  I found a Venture
    > > > Capitalist.  Wait a second, this is cool.  It does
    > > > what I want it to.
    > > > If it makes a mistake, he doesnt notice because,
    > > he is
    > > > lame. He doesn't understand a crap of security,
    > > but he
    > > > is blinded
    > > > by that greenish tinge of money. He says it's the
    > > real
    > > > thing, biotech was a fluke. I do BlaBlaBla and he
    > > is
    > > > cashing in on it.
    > > >         Damn kid.  All he does is techno babble.
    > > > They're all money whores.
    > > >
    > > > And then it happened... a door opened to a
    > > world...
    > > > rushing through the phone line like money through
    > > ATM
    > > > wires,
    > > > an electronic account transfer is done, a refuge
    > > from
    > > > the day-to-day incompetencies is sought... I sold
    > > the
    > > > code.
    > > >
    > > > "This is it... this is where I belong..."
    > > > I can buy everyone here... even if I've never met
    > > > them, never talked to them, may never hear from
    > > them
    > > > again...
    > > > I can buy you all...
    > > >         Damn professional hacker.  Tying up the
    > > server
    > > > again with his DDos bots.  They're all money
    > > whores...
    > > >
    > > > You bet your ESOPs we're all alike... we've been
    > > > spoon-fed security certifications when we hungered
    > > for
    > > > real stuff
    > > > ... the bits of meat that you gave was old seminar
    > > > crap, for which you charged $500.
    > > > We've been dominated by, or taken over by these so
    > > > called security gurus.  The few that had something
    > > to
    > > > teach found us
    > > > willing pupils, but those poor few are like money
    > > in
    > > > their accounts.
    > > >
    > > > This is our world now... the world of the security
    > > and
    > > > hoopla, the beauty of the moolah.  We make use of
    > > a
    > > > service
    > > > already existing without licensing for what could
    > > be
    > > > dirt-cheap if it wasn't run by profiteering
    > > gluttons,
    > > > and
    > > > you call us money whores.  We sell what you
    > > already
    > > > sold.. and you call us money whores.
    > > > Yes, I am a professional hacker.  My crime is that
    > > of
    > > > greed.  My crime is that of cashing in on this
    > > > security hype.
    > > > My crime is that of outsourcing you, something
    > > that
    > > > you will never re-pay me for.
    > > >
    > > > I am a professional hacker, and this is my
    > > > manifesto*[(c) Please read EULA for further
    > > details].
    > > > You may stop this individual,
    > > > but you can't stop us all
    > > > ... after all, we're all are money whores.
    > > >
    > > >                                +++The
    > > Entrepreneur+++
    > > >
    > > > _______________________________
    > > > Do you Yahoo!?
    > > > Win 1 of 4,000 free domain names from Yahoo! Enter
    > > now.
    > > > http://promotions.yahoo.com/goldrush
    > > >
    > > > _______________________________________________
    > > > Full-Disclosure - We believe in it.
    > > > Charter:
    > > http://lists.netsys.com/full-disclosure-charter.html
    > > >
    > >
    > 
    >                 
    > __________________________________
    > Do you Yahoo!?
    > New and Improved Yahoo! Mail - Send 10MB messages!
    > http://promotions.yahoo.com/new_mail
    >
    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html
    

  • Next message: James Tucker: "Re: [Full-Disclosure] Empirical data surrounding guards and firewalls."