Before putting up, admittedly over the last 7 years I’ve occasionally released stuff that others had previously published, which I had not known about. This is common for web security researchers due to the number of vast number of unresolved attack techniques, papers, and the liberal use of obscure terminology. CSRF for example, how many “novel” papers and names have their been over the years? When incidents are brought to my attention I’ve had no problem backtracking and quickly updating everything to cite the earlier work as the original source. Often people help out in the blog comments. In my experience, so has RSnake.
Back to Felton’s paper: This was not the first text introducing “timing attacks”. I don’t know what was, but I did find “Timing Attacks on Implementations of Diffie-Hellman, RSA, DSS, and Other Systems.” published 4 years prior to Felton's. Felton’s paper also doesn’t cite any other timing attack paper, nor did it need to in my opinion. So to my mind RSnake and I would not be compelled to reference Felton’s paper because our browser port scanning technique used a completely different kind of timing attack and also had nothing to do with browser history stealing. And, we made NO claim to invent timing attacks in general. Sheesh, so much drama.