Professional ethics and “coochackers”
I am writing a post "on the topic of the day" - for yesterday a certain folk craftsman found a hole in the berspersons.ru aggregator. Found - and behaved in the highest degree ugly. Not only did he set up a bug in Habré, he also spammed users' accounts through a hole (even if he did not do it, but his followers, it was necessary to think before putting it into the public domain). As a user of the service, I also came under the distribution, yes - I already cleared all the “viral” messages from blogs, I change passwords everywhere right now ... and, as they say, I think a lot.
When he was the programmer of the “youth portal” (read: kindergarten) http://zontik.ru, he had to deal with such characters all the time. For the site’s code is unusually leaky (and written, for the most part, not by me) - it’s not a secret to anyone that SQL-injections and XSSs were like holes in a colander, and now, surely, a lot remains . And, given that the main contingent of this site were teenagers with all their inherent set of adolescent problems, such as the ego that was infringed - all these bugs were used only by them for the purpose of self-affirmation and settling accounts with enemies. In general, I have seen video tutorials posted on the network “how to break an Umbrella”, and “just like that” banned users, and messages on behalf of others, and even my own password, so I learned to set passes of 25 or more characters) . And for each such find, essesna, blushing in front of the authorities, and even snatch up the lyuley. And if I myself made all these mistakes, it would be at least not so offensive. I would even know that I deserved it ...
So what am I writing this for? I don’t understand the hysterics, the universal hocking-hooting and the desire to “lower” the service with all the forces, like “oh, what they are all suckers, that's what they need, he himself retired and I wish everyone, burgaga”. If this is the expression of the opinion of Habrapublic, then its level, alas, has fallen dramatically. As correctly written in the comments, only the coder who writes nothing is not mistaken. Well, or writes something like hellowworld on BASIC (c) me. And all are so straight right that just a star. Of course, it’s wise to talk about the prospects of multinational IT corporations (like “if Microsoft Buys Microsoft so much”) or about the great and terrible FREELANCE (isn't it because they simply don’t take a permanent job?) Is a pleasant experience. And when someone really does something, creates some useful services (at least BP is really useful to me) - you definitely need to “drop the upstart.”
')
Know, than normal black hat differs from a kulkhatsker? Black hat-ohm is driven by anything - the desire to earn extra money, the slogan “information must be free” is just a sporting interest - but it is unlikely that it will be a desire to show off, to assert itself at the expense of others and to shout about yourself to the entire Network. If only because with a good scale of hacking (and not just “spamming someone else's blog”) it is simply not safe to glow once more. And kulhacker (most often young) is exactly what the "you are all suckers trying to show, and I am a cool coder." Perhaps I am too emotional - but I myself have always been wanted by this. Found a hole, got a bonus with it - either use it yourself, or report back to the admin. And to spread it in public, and even with similar comments - I think this is precisely a manifestation of bloated ChSV. I would not like to give such hands to such people - I would have spat in a face when I was in person. For I prefer to communicate with professionals, not with banderlog.
PS Well, in support of the service (no, I do not pay for it) -
When he was the programmer of the “youth portal” (read: kindergarten) http://zontik.ru, he had to deal with such characters all the time. For the site’s code is unusually leaky (and written, for the most part, not by me) - it’s not a secret to anyone that SQL-injections and XSSs were like holes in a colander, and now, surely, a lot remains . And, given that the main contingent of this site were teenagers with all their inherent set of adolescent problems, such as the ego that was infringed - all these bugs were used only by them for the purpose of self-affirmation and settling accounts with enemies. In general, I have seen video tutorials posted on the network “how to break an Umbrella”, and “just like that” banned users, and messages on behalf of others, and even my own password, so I learned to set passes of 25 or more characters) . And for each such find, essesna, blushing in front of the authorities, and even snatch up the lyuley. And if I myself made all these mistakes, it would be at least not so offensive. I would even know that I deserved it ...
So what am I writing this for? I don’t understand the hysterics, the universal hocking-hooting and the desire to “lower” the service with all the forces, like “oh, what they are all suckers, that's what they need, he himself retired and I wish everyone, burgaga”. If this is the expression of the opinion of Habrapublic, then its level, alas, has fallen dramatically. As correctly written in the comments, only the coder who writes nothing is not mistaken. Well, or writes something like hellowworld on BASIC (c) me. And all are so straight right that just a star. Of course, it’s wise to talk about the prospects of multinational IT corporations (like “if Microsoft Buys Microsoft so much”) or about the great and terrible FREELANCE (isn't it because they simply don’t take a permanent job?) Is a pleasant experience. And when someone really does something, creates some useful services (at least BP is really useful to me) - you definitely need to “drop the upstart.”
')
Know, than normal black hat differs from a kulkhatsker? Black hat-ohm is driven by anything - the desire to earn extra money, the slogan “information must be free” is just a sporting interest - but it is unlikely that it will be a desire to show off, to assert itself at the expense of others and to shout about yourself to the entire Network. If only because with a good scale of hacking (and not just “spamming someone else's blog”) it is simply not safe to glow once more. And kulhacker (most often young) is exactly what the "you are all suckers trying to show, and I am a cool coder." Perhaps I am too emotional - but I myself have always been wanted by this. Found a hole, got a bonus with it - either use it yourself, or report back to the admin. And to spread it in public, and even with similar comments - I think this is precisely a manifestation of bloated ChSV. I would not like to give such hands to such people - I would have spat in a face when I was in person. For I prefer to communicate with professionals, not with banderlog.
PS Well, in support of the service (no, I do not pay for it) -
Source: https://habr.com/ru/post/29696/
All Articles