oh I was doing that while reading the AMA. the giveaway is being the 4th customer of a bank that provides HBCI:
> My bank had around 20,000 customers using smsTAN and 3 (I was the 4th lol) using HBCI.
He is German, of college age and an early customer at one of 2 or 3 banks that provide HBCI. Consider him nailed.
I also bet he has published security related work under his real name at some point, especially since he has been applying for jobs. Most people in the security industry applying for legit work who don't have qualifications pad out their resumes with online research (or speaking at conferences, etc.).
This is fallicious. Anyone can register for an account. Knowing someone is on HN only gives enough information, that said person is in the 'HN demographic'. Just because he happened to register for an account, vs someone similar who didn't, does not give us the amount of entropy removal you implied.