Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
rslade
Influencer II
‎12-12-2020 02:03 PM
‎12-12-2020 02:03 PM

Florida "state" password

OK, simply by mentioning that this would come out of Florida I'm already at risk of being banned for making a political post, so I won't go too deeply into the background of this story (which is messy in the extreme).  Suffice it to say that a state employee has been arrested because she sent a message on a system which implied that she had to be misusing an account and password.

 

However, it turns out that there is, in fact, only one login and password, it is used by 1700 users ... and it's also posted online for anyone to find and use ...


............

Other posts: https://community.isc2.org/t5/forums/recentpostspage/user-id/1324864413

This message may or may not be governed by the terms of
http://www.noticebored.com/html/cisspforumfaq.html#Friday or
https://blogs.securiteam.com/index.php/archives/1468
Reply
12 Replies
denbesten
Community Champion
‎12-19-2020 02:08 AM
‎12-19-2020 02:08 AM

@Startzc wrote:

... why should I be required to eloquently reply...?

It is not required to be eloquent. What is required is to be respectful.  To participate on this community, one is required to follow the rules set forth by is owners and to which @AndreaMoore  (thier official representative) earlier provided a link.

 

As for the topic at hand, no need to wonder about the justification.  The article Rob provided contains a link to the affidavit for the search warrant which enumerates the probable cause resulting in the warrant's issuance.  It also makes clear the Affiant's intent to search her computing devices to develop the requisite evidence (or in your vernacular, "non-repudiation").

 

AFAIK, no charges have been issued, so I am not yet able to speculate how easily either party may prevail.

Reply
rslade
Influencer II
‎12-19-2020 12:56 PM
‎12-19-2020 12:56 PM

I'm *SO* glad that my initial post has engendered such thoughtful discourse and
high quality debate.

(I *told* you the story was a mess. Somehow it seems to create additional messes
...)

======================
rslade@gmail.com rmslade@outlook.com rslade@computercrime.org
"If you do buy a computer, don't turn it on." - Richards' 2nd Law
"Robert Slade's Guide to Computer Viruses" 0-387-94663-2
"Viruses Revealed" 0-07-213090-3
"Software Forensics" 0-07-142804-6
"Dictionary of Information Security" Syngress 1-59749-115-2
"Cybersecurity Lessons from CoVID-19" CRC Press 978-0-367-68269-9
============= for back issues:
[Base URL] site http://victoria.tc.ca/techrev/
CISSP refs: [Base URL]mnbksccd.htm
PC Security: [Base URL]mnvrrvsc.htm
Security Dict.: [Base URL]secgloss.htm
Security Educ.: [Base URL]comseced.htm
Book reviews: [Base URL]mnbk.htm
[Base URL]review.htm
Partial/recent: http://groups.yahoo.com/group/techbooks/
http://en.wikipedia.org/wiki/Robert_Slade
https://is.gd/RotlWB http://twitter.com/rslade
http://blogs.securiteam.com/index.php/archives/author/p1/

............

Other posts: https://community.isc2.org/t5/forums/recentpostspage/user-id/1324864413

This message may or may not be governed by the terms of
http://www.noticebored.com/html/cisspforumfaq.html#Friday or
https://blogs.securiteam.com/index.php/archives/1468
Reply
0 Kudos
ericgeater
Community Champion
‎12-21-2020 01:29 PM
‎12-21-2020 01:29 PM

I'm just glad the argument flared and died.

 

So what're the three legs of this broken-leg stool?  The system must be 

  1. Secure
  2. Easily Accessible
  3. Always available

Insert the obligatory "you can only pick two", and the password is solarwinds123

-----------
A claim is as good as its veracity.
Reply
0 Kudos