This comment breaks the site guidelines. They ask: "Please respond to the strongest plausible interpretation of what someone says, not a weaker one that's easier to criticize."
They also ask: "Eschew flamebait. Don't introduce flamewar topics unless you have something genuinely new to say. Avoid unrelated controversies and generic tangents."
This is part of a larger ethos of curiosity about how things work and building, modifying and demystifying tools used everyday; e.g hacker culture. I don’t think it is particularly fair to reduce skills like this, or frankly exploration of skills like this on private property, to one negative and narrow usecase.
-To stay within this narrow example - how is one supposed to build a better lock if one doesn’t know how current ones can be defeated?
I see this as a brilliant move to foster the kind of curiosity which IMHO is essential to be a good engineer; as an added bonus, it teaches them from an early age that systems can be defeated. That goes a long way towards curing the blind faith in the security of, say, one’s cloud storage...
You cannot learn to make a secure lock if you don't know how to pick a lock.
Similarly, you can't build a secure system if you don't know how you'd crack a secure system.
Of course, you don't have to really know exactly which tools to use but you'd still have to know the common methods of attack, how they work, what type of tools people might use.
Once you know that, you can take steps to defeat the tools and workarounds.
What's a more interesting way to get people interested in IT, plopping them down in front of a VM and teaching them how to stand up a DNS service, or teaching them basic pen testing? People are only going to put in the time to learn the subject matter if they are intrigued by it. As an example, I sat through a few CS classes in college and thought they were painfully boring. A few years later I learned how to script and saw the power of software development, and I became interested in going back and learning the fundamentals to advance my skills.
Female programmer here: just about any of them would be more interesting personally.
As a topic it sounds cool, but it is not actually that interesting, not what attracted me and you won't be able to use those skills that much in real life or real situation. Not that practicality is standard, I like plenty of impractical things (like theory).
I mean, doing basic pen testing is repetitive mind numbing work that requires mostly rote learning. It gets interesting and challenging only later on. Fake hacking exercises can be fun, but that is not basic pen testing - that is game.
This is downvoted, but I half agree with sentiment. I don't like glorification of hacking either and outright hate when lack of respect for boundaries (at mildest hacking is exactly that), willingness to cheat or harm others are treated as proxy for tech aptitude. That is all too common in our culture.
Through, here it is likely to be framed more as game and not real thing. When they shoot water pistols, they are not learning to kill either.
> lack of respect for boundaries (at mildest hacking is exactly that), willingness to cheat or harm others
One of those doesn't belong on this list. Lack of respect for boundaries in this context is really a lack of respect for authorities, and that is an extremely important thing for a society to have, and has absolutely zero intrinsic connection to willingness to cheat or to harm others, very much to the contrary: Only if you are willing to challenge authorities will you successfully counter authorities harming others.
You can learn how to subvert systems and at the same time how to use that skill to the benefit of society, be it by building systems that aren't so easily subverted where that is appropriate, or by defending people who unjustly are accused of things they didn't do due to unjustified trust in the reliability of an unreliable system.
I really meant and observed lack of respect towards others not just autorities. Reading other people's messages for lols or making cruel jokes on them did not challenged autorite - mostly powerless randoms. There is such a thing as awesome challenging autorities, but throwing temper tamtrum because autority told you not to be jerk to other kids is not that. These types were more likely to frame innocent person they disliked then stand up to defend someone else.
None of that has anything to do with kids toy hack exercises. Which are exactly that and are fine as long as they are fun.
My family recently moved and, during the move, our file cabinet was accidentally locked. The key was lost years ago. Being able to pick the lock came in handy. Not all skills that CAN be used for illegal purposes WILL be used for illegal purposes.
I was a cracker in my early to mid teens. Never malicious, just exploratory. Owned my HS network and college networks. Had a moment when I realized how much I was in for if I was caught, and then just walked away, cold Turkey. Do financial software engineering now. Only crack myself now.
just to add to what others pointed out. it's only criminal in its unlawful usesses. locksmith and pen testing are things. in these activities there is usually a understanding and knowledge of how the thing works.
Just like the increase in migrant crimes has "real world consequences" in Germany, including citizens voicing their opinions online, causing the "government" to pass a law to outlaw just that...
Whats their next research paper about? Water is indeed wet?
It's almost like German politician don't care about the problems of "Germans" or as some prefer to call them "People who have lived here for a longer time"
Funny, the politicians just listen to the people (businesses) with money. I'd wager that the vast majority of them are (run by) white Europeans of German heritage.
You seem to think that you have more in common with them, than with people who haven't been in Germany as long, but to the rich you are all just "the plebs".
