Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Diebold Global Election Management System (GEMS) Backdoor Account

from [gandalf] Network Security [Permanent Link]
Subject: RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes
Date: Tue, 28 Sep 2004 09:21:41 -0500 (GMT-05:00) 
Greetings and Salutations:

From: David Brodbeck

You're missing the social dynamics around it.  There are 
several parties
involved:

<snip>

- The public.  They don't understand these issues either, and 
they have a short attention span.


Let me add one more social dynamic.  The public will want to see instantaneous 
vote results, so eventually these computers will be networked to send the 
results back to a central voting computer ... And we are all familiar with how 
easily networked computer can be compromised if they aren't locked down.  Now 
we are also discussing Man In The Middle attacks, etc.

(Which to me adds yet another social dynamic, if people see one person is 
winning that might change or sway their vote)

The OSes had *better* be locked down and secure.  The only way to verify that 
is to either blindly attacked the box or have a open box that is inspected by 
real independent observers.

Ken
------------------------------------------------------------------
Do not meddle in the affairs of wizards for they are subtle and 
quick to anger.
Ken Hollis - Gandalf The White - gandalf@digital.net - O- TINLC
WWW Page - http://gandalf.home.digital.net/
Trace E-Mail forgery - http://gandalf.home.digital.net/spamfaq.html
Trolls crossposts  - http://gandalf.home.digital.net/trollfaq.html
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Microsoft's GDI Detetection Tool faults, Dowling, Gabrielle
Next by Date:  Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes, Tracy Bost
Previous by Thread:  Re: Diebold Global Election Management System (GEMS) Backdoor Account, Brian Kirkbride
Next by Thread:  RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes, Jason T. Miller
Indexes:  [Date] [Thread] [Top] [All Lists]