I know him plenty, there's a lot more than what I've shared here or than what you've probably read or experienced in your own interactions with him. Perhaps consider that in a non-adversarial setting you wouldn't have had the same experience as someone else.

There seems some disconnect here. Isn't it more productive to try and find a way positive way forward here rather than throwing insults. I'm sure both you and Kees are wanting to see security improved and this isn't helping.

Sure, we did that last year or so. Did Kees tell you that while he and his boss at Google were in possession of a proposal from us that would have solved the problem the KSPP created and improved the security of everyone, he spiked it with his presentation full of...

trash talking our work and (failing at) an attempt at dropping 0day on us? The same project he was simultaneously copy+pasting code from verbatim and telling the world he respected so much?

I don't recall you calling that out -- so your concern here (and apparently not for plagiarism) is a bit one-sided I think.

OK, I'm up to speed now with that side of the facts. Thanks for informing me. I didn't call it out because I was ignorant of these particular facts. I can now reevaluate as I'm always open to learn.

BTW we never got an apology for that either -- the response was simply giving the same presentation again at another location and in the slide bragging about how they had 7 reviewers for their "correct" code (that I wrote an exploit for), updated it to 8 reviewers (to include me)

And as a parallel to the recent situations, even though in that case their finding didn't end up being security relevant and hadn't been reported to us, we still credited the person who did find it in the changelog.

So I don't really have any pity for the situation they're in with not being able to properly maintain the code they copy+pasted, or not coming up with original ideas, as not having it properly maintained was apparently both a goal of Kees and a business decision of Google's.

This doesn't even make sense and is obviously false. I once again regret attempting to engage with you. I spent years trying to help bridge the gap between you and upstream only to have your toxicity poison it every time. I'll go back now to ignoring your subtweets.