From: Alfred Huger (ah@securityfocus.com)
Date: Tue Jan 04 2005 - 23:59:26 EST
All,
The Pen-Test is now in it's 5th year of operation. I can' tell you how
satisfying it'ss been to run it for this duration. I'd like to thank all
the posters who make this list what it is. Many of you who post regularly
hold a debt of gratitude from me, I learn almost daily from this list and
that'sa gift difficult to assign a value to. Thanks!
Generally once a year I post some basic rules on list etiquette and
general behavior and given it'ss around the time when we are all settling
into this new year now seems as good a time as any. So here are some basic
rules I'd like to see followed on the list this year:
1. If you have nothing nice to say - say it elsewhere.
This one is pretty basic and should speak for itself. If you have a reply
to a topic and cannot manage to keep it civil keep it to yourself. You
always have the liberty of venting your spleen in a blog or perhaps to
your friends but I would rather you did not use this forum to lessen the
pressure on your vitriol valve.
2. If you can google, please do.
If you have a very basic question try to search our archives
(www.securityfocus.com) or run a search through google. I will allow basic
posts as I see real value in this list as a learning vehicle but we are
best served if you at least try to learn for yourself through available
methods.
3. Do not X-post.
This is basic net etiquette, which extends back far more years than this
list has existed. Cross posting introduces a host or problems, which cause
me headaches (mailer loops, out of office storms etc.) and therefore will
get dropped.
4. Be specific when criticizing a product or tool.
When you are posting criticisms about a tool or product (be it open source
or commercial) be polite and specific. Regardless of how you feel about a
piece of software you do yourself a disservice by being vague or rude when
listing it's perceived deficiencies. Please remember, that whether you
appreciate the work or not, someone did work and likely worked *hard* to
build the product you've found lacking and may well read this list.
Therefore please, think before you type. If you absolutely must be pointed
past the point of good manners hunt out another list to post to.
5. Be helpful if at all possible.
This is general and not something I've ever thought to bring up before. In
my mind it essentially means if you can help someone out, do so. This
industry is still small (all things being relative) but has over the last
5 or so years IMO the technical side of ourindustry has taken a turn for
the worst. We seem to pander to egomaniacs and people who offer little
value other than sharp technical skills and sharper tongues. All too
often we give people who are vicious and myopic a pass on their behavior
because of their technical skills. This is purely and utterly ridiculous.
A clever mind does not give you license to be nasty any more than a good
physique gives you license to beat people. As an industry we need to stop
tolerating this and worse yet we need to stop taking vicarious pleasure in
watching it. All of this ultimately provides little in the way of real
growth. If you have a chance to help someone learn something new or access
a new opportunity in this industry I would urge you to do it. Even if it
means something as simple as offering good sound advice on this list. It
is my belief that good things do in fact come back around.
Regards,
-al
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:12 EDT