undefined | Better HN

0 pointsheleninboodler3y ago0 comments

I don't know if there's anything wrong with Sheildsup (other than my recollection of it being a pretty run of the mill tool for reporting open ports), but the guy who makes Shieldsup is, in my opinion, basically a charlatan. He writes loads and loads of technical-sounding blather on his website that is very transparently designed to make him look like an expert on security to people who don't know any better. He's made a career out of selling tools people don't need but which are hyped up to make them sound critically important.

Here's an example of some hype I just found about a device he "invented" that is supposed to really put home routers through their paces, because he's the only one looking out for us. [1] Of course, it maybe doesn't exist, and his claims of what it's going to do sound far-fetched and misguided, but it sure does seem aimed to make him sound like a real security expert. Not sure if he ever made any claims about having evaluated any routers with it.

[1] https://www.grc.com/r&d/assimilator.htm

0 comments

easeout3y ago

I feel like what you're describing is just marketing, in the sense of exaggerating the necessity of a product that works but which you really can do without. Or do you mean Gibson's products don't really work?

heleninboodlerOP3y ago

Sure, it's "just marketing," but it's particularly egregious marketing because it relies heavily on fear and borderline lies about his expertise. And he puts out baloney like the "CSPRNG" in the OP that's not even sound. You may note that it's been 5 years since he was notified of the flaws in it, but it's still promoted in exactly the same irresponsible way.

ay3y ago

FWIW, he’s been at it for about 20 years.

killjoywashere3y ago

> he’s been at it for about 20 years.

At least. I remember finding his site back in 2004 and it felt long in the tooth then. Complete with blink tags.

pdonis3y ago

Gibson Research Corporation was founded in 1985. I can remember seeing references to articles of his in the late 1980s on Compuserve.

heleninboodlerOP3y ago

One of his most infamous crusades was how he yelled about Windows XP raw sockets -- a fake problem that he hyped up as if the sky was falling -- well after Windows XP was EOL'd.

timbit423y ago

What is your source for this "information"?

He brought it up in 2001, the year XP was released[1]. Microsoft fixed it three years later in SP2. XP was EOL'ed in 2009[2].

[1] https://en.wikipedia.org/wiki/Steve_Gibson_(computer_program...

[2] https://en.wikipedia.org/wiki/Windows_XP

1 more reply

icecube1233y ago

Thats over 20 years old. Its not worth mentioning in this discussion.

He only sells one product, Spin-Rite which actually works pretty well for its purpose, tho it’s becoming less important as we move more towards SSD.

It sounds like you’re spreading misinformation just for the hell of it.

svc03y ago

I've always been curious why people so fervently dislike Gibson. I think the most genuine criticism is that Spin-Rite is not a backup solution and people may rely on it as such. Ideally, no one should need it since all data should be replicated and backed up. Any drive can fail at any time for any reason and it may be totally unrecoverable.

[Side Note: He also once claimed in a "testimonial" that a special ops team recovered data off of a hard drive during a mission in which they hit a terrorist with a computer.]

That being said, he produces a free security podcast which is quite good. He knows his stuff.

pdonis3y ago

> Any drive can fail at any time for any reason and it may be totally unrecoverable.

While in principle this is true, I have been using hard drives for more than 30 years now in PCs and I have never had one fail. I still back things up to separate drives since there's always a first time, but I've never used SpinRite or any other extra "protection" over and above what my OS provided.

1 more reply

icecube1233y ago

The podcast is great. Provides great information and is more than happy to provide corrections when some calls him on it. Takes a very scientific approach to issues.

coleca3y ago

I agree. Not sure why all the hate. I’ve used SpinRite to recover some bad drives of mine and friends/family over the years and it’s worked quite well. Had one Windows box that was failing to boot before the login screen, ran SpinRite and it found / fixed some issues. Rebooted and the machine was fine. At least fine enough to copy everything to a new drive and ditch the old one. Haven’t tried it on an SSD though.

icecube1233y ago

Hes had a few testimonials that say its helped SSDs but only run it at level 2, (read only), as level 4 (read write) will wear a disk prematurely.

CyberDildonics3y ago

You only have one other comment and it was 16 months ago, this must have really touched a nerve.

heleninboodlerOP3y ago

You can take or leave the relevance of this "old" information, but there are dozens of pages on his current website that speak for themselves.

Most of it is just self-aggrandizing technobabble trying to appear authoritative and "educate" people on security issues with hilariously dumb content like the page that recommends checking Facebook's cert hash on his site before trusting it. His number one goal appears to be to convince people he is an "influential voice" in the security community (he uses that phrase to describe himself repeatedly). I just find it sad when I encounter people who buy it. Luckily, it mostly seems to appeal to a certain kind of misinformed enthusiast that I rarely encounter these days.

Note that this isn't to say all his info is bad. I particularly like stuff like his explanation of how NAT works. That's great content. If it wasn't mixed in with the chicken little snake oil stuff, I'd actually refer people to it.

j / k navigate · click thread line to collapse

0 comments

easeout3y ago

heleninboodlerOP3y ago

ay3y ago

FWIW, he’s been at it for about 20 years.

killjoywashere3y ago

> he’s been at it for about 20 years.

At least. I remember finding his site back in 2004 and it felt long in the tooth then. Complete with blink tags.

pdonis3y ago

Gibson Research Corporation was founded in 1985. I can remember seeing references to articles of his in the late 1980s on Compuserve.

heleninboodlerOP3y ago

One of his most infamous crusades was how he yelled about Windows XP raw sockets -- a fake problem that he hyped up as if the sky was falling -- well after Windows XP was EOL'd.

timbit423y ago

What is your source for this "information"?

He brought it up in 2001, the year XP was released[1]. Microsoft fixed it three years later in SP2. XP was EOL'ed in 2009[2].

[1] https://en.wikipedia.org/wiki/Steve_Gibson_(computer_program...

[2] https://en.wikipedia.org/wiki/Windows_XP

1 more reply

icecube1233y ago

Thats over 20 years old. Its not worth mentioning in this discussion.

He only sells one product, Spin-Rite which actually works pretty well for its purpose, tho it’s becoming less important as we move more towards SSD.

It sounds like you’re spreading misinformation just for the hell of it.

svc03y ago

[Side Note: He also once claimed in a "testimonial" that a special ops team recovered data off of a hard drive during a mission in which they hit a terrorist with a computer.]

That being said, he produces a free security podcast which is quite good. He knows his stuff.

pdonis3y ago

> Any drive can fail at any time for any reason and it may be totally unrecoverable.

1 more reply

icecube1233y ago

The podcast is great. Provides great information and is more than happy to provide corrections when some calls him on it. Takes a very scientific approach to issues.

coleca3y ago

icecube1233y ago

Hes had a few testimonials that say its helped SSDs but only run it at level 2, (read only), as level 4 (read write) will wear a disk prematurely.

CyberDildonics3y ago

You only have one other comment and it was 16 months ago, this must have really touched a nerve.

heleninboodlerOP3y ago

You can take or leave the relevance of this "old" information, but there are dozens of pages on his current website that speak for themselves.

j / k navigate · click thread line to collapse