From bmartin@repsec.com Mon Apr 26 21:31:06 1999 From: Brian Martin To: Garet von Netzer , Cathy Martindale , Dennis Spies Cc: Greg Rohloff , Broncbuster , RSI Legal Date: Mon, 26 Apr 1999 21:23:39 -0700 (MST) Subject: Irresponsible and LIBELOUS article you posted 04.26.99 To whom it may concern: My name is Brian Martin. I am a 25 year old computer security consultant and trainer living in Phoenix AZ. Sometime yesterday (04.25.99), you posted an article written by Greg Rohloff titled "Amarillo company tests hacker-proof system for Web site servers". This article can be found at http://www.amarillonet.com/stories/042599/bus_hacker.shtml In the article, Mr. Rohloff repeats libelous accusations by a Ms. Carolyn Meinel. Specifically: Two notorious hackers, operating under the cyber-noms-de-plume Jericho and Broncbuster, have failed to get in, Meinel said. Both are believed to be part of the Hacking for Girlies group that attacked the New York Times Web site in which hackers attacked the newspaper for its coverage of the arrest of accused hacker Kevin Mitnick. This is not the first time Ms. Meinel has conned a reputable news source into repeating her unfounded and libelous claims. At no point have I (yes, I am known to some as 'jericho') attempted to break into any site related to SAGE, Ms Meinel, or anyone else associated with her. This included her ISPs, friend's machines, or any other server. In the past, Ms. Meinel has repeatedly claimed I have done just that, yet can not provide any logs or any other substantial proof that her claims are based on fact. In fact, in the last three years I have challenged her to produce logs to back her claims almost a dozen times. Not a single time has she been able to do so. The irresponsible reporting shown by your staff is bordering on libel. Reprinting the unfounded accusations of an established charlatan in the security industry without consulting me is unethical. My contact information is a matter of public knowledge, yet no attempt was made by your staff to reach me in any form. Even Ms. Meinel has my email addresses, phone number, and business address. Despite this, no communication or questions were asked of me to verify these claims. As a professional security consultant, reputation is critical. If clients think a security contractor is unethical, or an active hacker, they can not risk hiring such an individual. By assissting Ms. Meinel in her three year harassment and smear campaign against me, you are aiding her in the libel that is doing damage to my carreer. If your institution strives to be considered 'ethical', then you should print an immediate retraction clarifying the "details" in this article. I have not and will not attempt to defeat the security of Ms Meinel's computers, her ISP's computers, SAGE's computers, nor anyone elses unless it is part of a written agreement giving me explicit permission to do so. Anything short of that written agreement is illegal and I do not condone that sort of activity. I would appreciate a reply to this complaint. Thank you for your time. Brian Martin bmartin@repsec.com jericho@attrition.org 602.559.9661