[lalalander]

This is not a case of teenagers stumbling across some leaked software and then getting disproportionately punished for the unauthorized access. This is a about a guy who, in one example, tried actively to sell leaked software for profit. This is not about kids just having some harmless fun.

[jackpirate]

The sentences of 18-24 months seem entirely reasonable for the crimes committed too. At least compared to some other horror stories you hear about sentencing for computer crimes. These kids definitely have a chance to put all of this behind them and be productive members of society.

[krageon]

Of course with the american prison system being the way it is, the chances of these children coming out in any way better prepared to contribute to society than before they were imprisoned are very slim.

[cududa]

I wasn’t commenting on the activity or punishment, more just the generally similar circumstances and outcomes.

[wolfgke]

> and be productive members of society.

I personally doubt whether one wants to be a productive member of a society that put one into jail.

[wjnc]

The thing is... morality is a lot more fluid in the years < 20. Doesn't absolve him from responsibility, but the protagonist was hacking Xbox code at 10 and was into serious stuff long before being an adult. If someone, anyone would have put him aside and gave him serious options, he would have probably taken them.

[blackflame7000]

I'm inclined to agree that people who commit "crimes of skill" are better able to repay their debt to society by using their ability for good rather than rot in a cage.

[wolfgke]

> I'm inclined to agree that people who commit "crimes of skill" are better able to repay their debt to society by using their ability for good rather than rot in a cage.

I agree with the mind of this statement. The problem is: For lots of such skills, it is hard to find jobs where these are needed (for example reverse engineering). Based on my personal observation, to stay in the example, there exist much more skilled reverse engineers than jobs where these skills are useful/needed.

[blackflame7000]

Do you have any idea how many engineers on a daily basis are either reverse engineering some government weapon, or a competitions product, or a geopolitical strategy? Being able to understand exactly how things work, allow you to anticipate and even dictate how they will behave.

[aerovistae]

I find this profoundly unlikely.

[wolfgke]

> I find this profoundly unlikely.

I know lots of examples where this is the case (I am talking about Germany, where the situation might be a little different, but I do not believe that the difference is too large).

I know some really great reverse engineers who have difficulties to find a decent job (they get through with some badly paid jobs that are far below their skills).

I can assure that I have hardly ever seen a job ad where reverse engineering (as in software) skills are even mentioned. And I openly admit that I (who also have some knowledge in reverse engineering) would not even know where to ask/look for a job that gratifies such skills. Be assured that I would have passed on such job hints if I knew of any.

In my observation the whole "IT security" scene (I am aware this is a somewhat different area than reverse engineering) is a close-knit circle that is hard to get into. If you are able to get into, I have strong evidence that the salary is actually rather good. But I have no idea how to get into the inner circle where the job offers await.

Seriously: I have some colleagues who even asked me with my knowledge about security why I do not get into this the field of activity of IT security. I tell them to give me hints how to get into this inner circle where the interesting job offers await. None of these loudmouths could tell me. Of course...

EDIT: I could go on and on. The statements stay the mostly the same all the time: Where can such a person find job offers?

[blackflame7000]

Reverse Engineering is a much broader field than simply in the context of software engineering. But it takes an engineering mind to be able to replicate another engineers work. Other examples include: bomb squad detectives, Root cause analysis experts, market/competition research, Prototyping(taking apart an existing product and adapting it to make a new one). NTSB agent which I think would be really interesting.

[WonkeyMonkey]

As you say infoSec groups are _very_ close-knit. Normally forming groups based off of geographic location due to regular social meetups. These groups also are normally all part of an online chat (think irc, but most people have moved onto some other platform these days)

If someone were looking to join the easiest way would be find a conference near you. In the US pretty much any major city has these, but in other countries I'm sure they are just as common. Some are very professional, some are less so. If there is copious amounts of drinking you're at the right place. Generally the smaller the conference the better, so that also means less advertising and harder to find

Lots of different InfoSec groups go to meetups so at that point just talk to as many people as you can, it might seem difficult to break into a group without anyone to vouch for you but most of the time everyone is open to newcomers

[lagadu]

As someone who does work in security: the field is far wider than you seem to imply really.

When you say "IT security" do you mean pentesting? Access management? Network security? ISO 27001 auditing? Working with any of the many security-related software suites around?