July 2009 Archives

Unattended entries

By Tom on July 17, 2009 10:56 AM | No Comments | No TrackBacks
This issue was reported by Florian. It was taken at a university and shows an completely unattended entry to the internal heating system. 

hagenberg_heating_system_01.jpg

So please, don't forget to define and enforce rules in your company that no entry to restricted areas should be left unattended. Neither for long nor for short time.


Next picture in locking practices

By Tom on July 12, 2009 12:05 PM | No Comments | No TrackBacks
We've already commented on some locking alternatives, this picture is another one taken from Markus during his trip around the Hubertussee in Styria, Austria. I suppose that's pretty obvious, but to be sure "Guys, keeping the door closed with a wire doesn't mean that the door is locked". Nothing more to say, I guess - hardwired. 

ssl20804.jpg

Thank you for sending in the picture, Markus. :)

The weakest lock

By Tom on July 5, 2009 11:45 AM | No Comments | No TrackBacks
Some of you might know this picture from my presentations with Ali about physical security. It's all about the weakest link or the weakest lock. There are 2 to 3 refrigerators in every kitchen in the hostel in Hagenberg. You can see it in the next picture. All the students have their own box where they can place their drinks and food. The box can be locked with their key from their room. I can't remeber it exactly but I think it's a Winkhaus lock with some side-pins to add security to the lock. 

hagenberg_fridge_01.JPG 


As you might have noticed, the Winkhaus lock is not the problem. There's a really easy to pick lock with just about 3 pins on the left side of the fridge that is protecting the whole refrigerator. While opening the boxes, of course non-destructive, could take a while, opening the door for all boxes together would be matter of seconds. Not the best situation for the students but good for our environment - you shouldn't keep the refrigerator open for too long anyway.   


Hagenberg_fridge_02.JPG

« June 2009 | Main Index | Archives | August 2009 »

Search

User ranking

User     Reported Pitfalls
Flo4
Norb4
Berni2
Sup2
Ali1
Churchy1
JG1
Nuuz1
Trixi1
vmorbit1

Idea behind SecurityPitfalls.org

SecurityPitfalls is an educational, supportive and fun project and depends strongly on the community that drives this project. For further information visit the article What's the basic idea behind SecurityPitfalls.org

About this Archive

This page is an archive of entries from July 2009 listed from newest to oldest.

June 2009 is the previous archive.

August 2009 is the next archive.

Find recent content on the main index or look in the archives to find all content.

Categories

Monatsarchive Archives

Send in your photos and stories

SecurityPitfalls.org is a community project where we work together and collect situations where security fails, primarily for educational purpose, as source for discussions and presentations and fun. Send your photos (digi cam/handy), stories or movies to incoming {at} securitypitfalls.org and we will post your experiences you want to share with other people.

Recent Comments

  • Flo: nice one :) read more
  • Tom: In addition, you could perform some dumpster diving exercises. :) read more
  • fl0: Hoi, additionally you could try to get hold of the read more
  • philipp: A link to the original blogpost of Schneier would be read more