Aleph1 Passes The Bugtraq Baton 69
Rogue_F writes: "The long running security mailing list
Bugtraq
is getting a new moderator. Elias Levy (the real name of the familiar Aleph1) has decided to move on to other things.
For nearly six years he has been moderating bugtraq with a high degree of success. No one doubts the usefulness of bugtraq, but many people probably dont appreciate what a 'clean' list it is. No spam, no flames, no relgious security wars, instead you get good wholesome security information.
Aleph1 details in this
message that he is moving on to other security projects and that David Ahmad is taking over moderation duties.
Bugtraq continues to churn out quality security information on a daily basis, and it looks like it will continue to do so for quite some time to come." List moderators and maintainers seem universally denied their due credit -- people like Zack Brown (of Kernel Traffic fame) end up getting noticed only when --infrequently -- they go on vacation.
Good. (Score:1)
Unbiased? Impossible. (Score:2, Insightful)
What I think you mean by 'unbiased' is 'without biases I don't like'.
Re:Unbiased? Impossible. (Score:1)
I would try and define what I mean by unbiased, but I think that "without biases I don't like" pretty much is correct.
Freedom of Information (Score:1)
Let's hear it for Zack then.. (Score:1)
Zack, I doff my hat to you...
for the long and short of the kernel
and for the cousins too.
Hopes for a smooth handoff (Score:1)
Good to see ... (Score:2, Redundant)
Re:Good Riddance (Score:2)
I don't think the 'anti-openbsd' stance was one that aleph1 maintained, but more one of the community as a whole, only because the sheer amount of activity on other OS's.
and yes, if you attempt to prove that there is an unhackable OS, sorry you're going to get slashed up and down. `8r)
Re:Good Riddance (Score:1)
OpenBSD has good out-of-the-box security, but a clueful admin can make a linux/freebsd/netbsd box just as secure. And an incompetent admin can make an openbsd box insecure *very* fast. The motto with OpenBSD is good code auditing and fixing (Linux distros have this as well now, Debian's Security team does a great job), and a locked up default install. Most linux distros skew on this last part and need some security adjustments to make them more secure.
Either way I don't consider my locked up debian box to be less secure than an equivalent OpenBSD box, considering the linux kernel is secure and the programs running on top are the same.
Re:Good Riddance (Score:2, Troll)
and not "Four years without a hole in the default install!").
2) Theo deserves a little smacking when he missteps. Thats not to say he hasn't done a great job and I think he and the openbsd team have done a wonderufl job and I enjoy using obsd. However when one has the attitude that Theo has I can't help but think he deserves a little smack when something is wrong (as does anyone who thinks their shit don't stink).
An interview with Elias Levy (Score:5, Interesting)
This guy is brilliant. Hopefully the new moderators will be able to live up to Elis Levy's wisdom.
Aleph1 and Levy? (Score:2)
Is it a reference to Eliphas Levy, the 19th century ceremonial magician whose name seems a lot like Elias Levy? After all Levy was quite into the ritual aspects of the Hebrew alphabet from a Hermetic point of view, and the first letter of that writing system was "Aleph" meaning "Ox" and associated, in the Sepher Ytzirah with Air and moderation between extremes (summer/winter, heaven/earth, fire/water) embodied in the other mother letters of Mem ("Water") and Shin ("Tooth").
It is kinda interesting to see the Hermetic and Computer worlds collide occasionally. Better get back to summoning those daemons....
Re:Aleph1 and Levy? (Score:1)
ding ding ding, we have a winner (Score:1)
Re:Aleph1 and Levy? (Score:3, Informative)
A countable infinity (e.g. the set of natural numbers) is given the name Aleph Null (or Aleph0).
One reference is at http://mathforum.org/dr.math/problems/simakovsky10 .28.97.html [mathforum.org]
This does not, of course, get us much closer as it still doesn't explain why Elias should choose to be uncountably infinite although Second Transfinite Cardinal has a kind of a cool pseudo-ecclesiastical ring to it.
Re:Aleph1 and Levy? (Score:1)
Re:Aleph1 and Levy? (Score:2)
Hmm, does he have a nick name yet? (Score:2, Funny)
Aleph1 will be missed by at least me. (Score:5, Insightful)
The 'usual discussions' were sometimes let through, but Elias never let them go on too long. The spam was almost non-existant. And anytime I had a problem with recieving items from the mailing lists, he was always quick to fix them.
Aleph1's contribution to the security community has been sizable, and he shall be remembered. Even if only for future "gR33+5 +0 4l3ph1!!" in exploit code to come.
Thank you for contributing your time and energy herding 50,000 cats at the same time. Some of us appreciate it a great deal.
(Not to downplay david's already noticable contribution of course. `8r) )
A Quick Thanks (Score:3, Insightful)
The hard moditorial work done by Mr. Levy is what makes BugTraq the useful tool that it is.
While I have no doubt that Mr. Ahmad will serve the community in an excellent fashion, Mr. Levy will be a really hard act to follow, and I for one will miss his unseen hand.
Aleph1? Don't you mean AlephOne? (Score:1)
You mean the same bungie.net that was bought and crushed by Microsoft to stifle competing Linux software? Yes. that Bungie.net.
Interview with Elias Levy (Alpeh1) (Score:4, Informative)
Interview with Elias Levy (Alpeh1) [seifried.org]
Bugtraq is probably the best security mailing list around. However while the quasi-founder (technically Aleph1 didn't start Bugtraq as I was surprised to find out) is quite prominent online I wasn't able to find any detailed information about him or Bugtraq (except for one old interview). So here for you to enjoy is an interview with Aleph1.
Kurt: Where does the name Aleph1 come from?
Elias: Its comes from transfinite mathematics. There exists many "infinite" numbers or sets. The first infinite number is small omega or alef null. It is also called countable infinity. Many infinite sets can be mapped one-to-one with each other. For example, the set of all natural numbers can be mapped one-to-one with the set of odd natural numbers. Yet one is a subset of the other. Both these sets are said to have a cardinality of alef null. Alef One is the first cardinal number after alef null (i.e. the first set that cannot be mapped one-to-one to a set of cardinality alef null).
Click here (http://www.seifried.org/security/articles/2001101 5-elias-levy-interview.html) for more. [seifried.org]
Alfred Huger is leaving the incidents list too (Score:2, Interesting)
Re:Alfred Huger is leaving the incidents list too (Score:2, Informative)
Re:Alfred Huger is leaving the incidents list too (Score:2)
Elias and Al have turned the reins for a couple of their lists over to other SecurityFocus employees. Dave, Jensenne, and Mario are all very capable moderators. Your note makes it sound vaguely like we're abandoning our free services, we're not. All of us spend some time working on the free stuff as part of our jobs. That's one of the great things about working here.
Re:Alfred Huger is leaving the incidents list too (Score:1)
Hey, so what happens... (Score:2, Funny)
Re:Good riddance. (Score:1, Informative)
Good luck Aleph1 (Score:2, Insightful)
Secondly I think it would be interesting if Slashdot could do an interview with Scott Chasin, aka Doc Holiday, the original founder of BugTraq. There are some of us who still remember when BT started and are interested in reliving the motivations behind it's inception.
Lastly, I'd like to say that certain comments made at Blackhat this year were quite inappropriate, (regarding BugTraq). It's unfortunate what damage (unnamed) small-minded members of the community can have -- for a service that has been free, useful, and especially today, increasingly important.
Re:can you say, plagerism? (Score:2)
Yes, that's the one. It's a special thing we do with posts from time-to-time, we call it a "summary". It's when the moderator takes the time out of his day to collect a bunch of e-mail on a subject, tracks who gets credit, and puts them into a single e-mail for the sake of brevity. The alternative is to let through 20 individual e-mails that have massively quoted previous mails, etc..
Elias Levy, Tarot, and Occultism (Score:2)
Well, if that's his real name, it sounds to me like the name of the famous occultist Éliphas Lévi, (1810-1875), or Alphonse-Louis Constant, who was well known for his works on occultism, notably on the Tarot, and association with Freemasonry and Rosicrucian thought. "Aleph One" is a particularly apt handle for someone with that name, as Éliphas Lévi used the Hebrew letter "Aleph" to denote the first Tarot card, the Magician, in his Cabalistic studies of the cards. I dunno, perhaps his name was just a coincidence, and he got the Aleph One handle from there.
Running a Mailing List is Hard Work... (Score:4, Interesting)
Not only do you have to deal with keeping things on traq, but you have to deal with all the other problems that people never see.
* Bounced mail when people drop their e-mail accounts. (And it is even more fun when it turns out to be forwarded from some other account.)
* Dealing with clueless users who accuse your domain of being a spam service when some piece of spam gets past your filters. (And informs your ISP and his ISP and you get to spend a few days digging out the mess.)
* People who are too clueless to figure out how to unsubscribe.
* Admins who are too clueless to figure out how to unsubscribe a user, but are clued enough to find your home phone number and call you demanding that you unsubscribe them.
* People who were subscribed by someone else and have no clue what a mailing list even is...
* Running Linux out of file handles. (It was an old kernel.)
* Dealing with all the complaints when the system melts, the system gets moved, things get weird with the system clock and/or plain demonic possession.
And all sorts of other things that ate at my insides.
And you get little or no thanks for any of it.