<html><head><meta http-equiv="Content-Type" content="text/html charset=utf-8"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><div>I think you need to calm the $^&* down.</div><div><br></div><div>Steve Gibson is indeed noted as a security researcher, and the company he founded has been doing computer security work since the 90's. Whether he's any GOOD at it is up for speculation (as he's had a couple of very public flubs), but in the grand landscape of things he knows quite a bit more about security than I do and probably most of us on the list.</div><div><br></div><div>The <i>facts </i>are that he's created as many security products as he has utilities, he's an assembly coder that can decompile and read these things like a second language, and has a considerably better handle on all the various security issues out there than a large portion of the landscape. </div><div><br></div><div>The <i>truth </i>is that he's written a number of products aimed solely at security:</div><div><br></div><div>Leaktest</div><div>Securable</div><div>Shoot the Messenger</div><div>Unplug n'Pray</div><div>DCOMbobulator</div><div>and Mousetrap</div><div><br></div><div>The <i>truth </i>is that he has a number of web-based utilities aimed solely at security:</div><div><br></div><div>Shields Up</div><div>Password Haystacks</div><div>HTTPS Fingerprints</div><div>DNS Spoofability testing</div><div>Perfect Passwords</div><div>PPP Passwords</div><div>and the Security Now podcast</div><div><br></div><div>…not to mention being the contributing editor to InfoWorld (when that was a thing) reporting on security and the world of both hacking and cracking.</div><div><br></div><div>Pertinent to our list, he makes all his stuff available for FREE (except his original SpinRite! disk product which "pays the bills") in a very FOSS-like availability.</div><div><br></div><div><br></div><div>This is yet another occasion on this list of someone pouncing on someone else for trying to be helpful. </div><div><br></div><div>Keep this up and nobody but you will be left here bitching at yourself. </div><div><br></div><div>Relax. This list isn't that important and neither are you.</div><div><br></div><div><br></div><div>--j</div><div><br></div><br><div><div>On Oct 11, 2013, at 9:29 AM, Michael B. Trausch <<a href="mailto:mbt@naunetcorp.com">mbt@naunetcorp.com</a>> wrote:</div><blockquote type="cite"><div bgcolor="#FFFFFF" text="#000000"><br>
<br>
Steve Gibson is <b><i>not</i></b> a security expert. Stop putting
him on a pedestal, and PLEASE stop spreading bad information. That
new "secure" login procedure has AT LEAST one fatal flaw, and I
think two. It is not suitable for use, and in fact straight
username and password over TLS is more secure.<br>
<br>
At this point, I am respectfully asking you to quiet down on the
list.<br>
<br>
The last thread you started was on Windows.<br>
<br>
This thread is invoking Gibson (again), despite much rather on-topic
discussion to the fact that Gibson isn't a suitable source of
security information. This is at least the third or fourth
off-topic post from you this week that I can recall—and quite
impolitely without the OT.<br>
<br>
Please stop spreading bad information and please stop discussing
your trials and tribulations with your Microsoft products at all on
this list. You can't seem to put "[OT]" in when it needs to be
done—so please just stop altogether.<br>
<br>
Much appreciated,<br>
<br>
Mike<br>
<br>
<div class="moz-signature">-- <br>
<table border="0">
<tbody>
<tr>
<td> <span><ehfbcech.png></span> </td>
<td> Michael B. Trausch<br>
<br>
President, <strong>Naunet Corporation</strong><br>
☎ (678) 287-0693 x130 or (855) NAUNET-1 x130<br>
FAX: (678) 783-7843<br>
</td>
</tr>
</tbody>
</table>
</div>
</div>
_______________________________________________<br>Ale mailing list<br><a href="mailto:Ale@ale.org">Ale@ale.org</a><br>http://mail.ale.org/mailman/listinfo/ale<br>See JOBS, ANNOUNCE and SCHOOLS lists at<br>http://mail.ale.org/mailman/listinfo<br></blockquote></div><br></body></html>