Slashdot Mirror

← Back to Stories (view on slashdot.org)

Master Diebold Key Copied From Web Site

Posted by CmdrTaco on from the this-can't-be-real dept.

Harrington writes "In another stunning blow to the security and integrity of Diebold's electronic voting machines, someone has made a copy of the key which opens ALL Diebold e-voting machines from a picture on the company's own website. " Update: 02/06 17:40 GMT by Z : We previously discussed this story, early last year.

11 of 100 comments (clear)

  1. Déjà vu? by daveschroeder · · Score: 5, Informative

    Hmm, I seem to recall this story from somewhere...it sounds somehow strangely familiar...almost as if this exact thing had occurred before...

    Oh, that's right, this story was covered -- right here on slashdot, no less -- a year ago, complete with a link to the very same now-year-old blog post, which was significantly updated at the time, and caused Diebold to remove the photo in question! (A very generic key form was used.) Might want to update this post...

    Archives - January 2007 should be a clue. Or at least one would hope.

    While you guys are at it, can you fix your patently incorrect story about Iran being "offline", when it clearly and provably isn't, thereby negating the main premise of the story? You know, since no one seems to care about anything sent to the on-duty editor email.

    Slashdot is really on fire today!

    1. Re:Déjà vu? by dattaway · · Score: 4, Funny

      The real story is someone hacked a Diebold voting machine to host Slashdot. Notice how this site is running slower than usual, turning out false stories, and running dupes?

    2. Re:Déjà vu? by elrous0 · · Score: 3, Funny

      The truth is that "Zonk," "CowboyNeal," etc. are actually just programs running on a server in Wisconsin. But the programs have a serious memory leak problems which only get worse if the server isn't rebooted ever few months. The guy who was supposed to reboot it this time couldn't afford the gas to Wisconsin.

      --
      SJW: Someone who has run out of real oppression, and has to fake it.
  2. Details of picture in case of slashdotting by Anonymous Coward · · Score: 3, Funny

    The picture was of a piece of luggage with the combination of "12345."

    Pretty damn stupid to use that as a master key.

  3. Spreading Democracy Begins at Home by Doc+Ruby · · Score: 4, Insightful

    Any country making both democracy and security its highest priorities for years, even at cost of a perpetual state of emergency, suspended liberty, thousands dead and many tens of thousands wounded (multiplied in the non-American casualties), unsupportable debts, alienating allies and activating enemies, would immediately remove these untrustworthy machines and never allow their vendors or technologies into the critical path of its government again.

    Such a country would never have allowed such a risk at all, either before or after such vulnerabilities were publicly exposed.

    But instead, this story will become a footnote. Precisely because there's an election going on. An election that is threatened by these untrustworthy machines.

    Since those priorities were set and executed by a government installed on the reports of these kinds of untrustworthy machines, I guess we've got everything we deserve.

    --

    --
    make install -not war

  4. Well... by Black+Parrot · · Score: 5, Funny

    What's the problem? We've all been demanding "open" elections.

    --
    Sheesh, evil *and* a jerk. -- Jade
  5. Social Engineering by ObiWanStevobi · · Score: 4, Insightful

    While this story may be old, it was not a major election year when it ran, and all the e-voting problems still have not been fixed. So it is at least worth mentioning again, I think. Also, this story serves as a reminder that the most fearsome element of malicious "hacking" is not some geek with uber skills in a dark room, it's the information we willingly give out without realizing the danger.

    Ok, I done trying to be constructive. I always was mostly a crowd follower, so here goes: Slashdot sucks and I hate them for posting this story.

  6. Re:Slashdot by TubeSteak · · Score: 4, Funny

    I keep getting this error message
    Am I reading too much into it?

    503 Service Unavailable
    The service is not available. Please try again later.

    --
    [Fuck Beta]
    o0t!
  7. If they'd post the vote... by fahrbot-bot · · Score: 3, Insightful

    ...the machines are pre-programmed to cast, someone could photocopy that and save us all the trouble of actually voting.

    --
    It must have been something you assimilated. . . .
  8. Bad move by Z00L00K · · Score: 3, Interesting
    First it's a bad move to post the actual key on the website. Maybe it works on their ATM:s too?

    Second, from the appearance of the key it seems to be a lock that's EXTREMELY easy to pick so the effort to make a copy - even by trial and error - would be small.

    So if everybody that knows that Diebold machines are in use during an election makes their own key and just unlocks it and leaves the machine open... That could be for some interesting news. Votes dismissed due to irregularities - 50%. Just make sure that the machines is in the counties populated mostly by your opponent.

    And - what stops one from ordering keys from Diebold?

    --
    If builders built buildings the way programmers wrote programs, then the first woodpecker would destroy civilization.
  9. Re:Please explain by epsalon · · Score: 3, Informative

    The major difference here is a subtle but important one. With the banking system, if someone manages to get money or goods they are not entitled to, someone will be missing that money or goods and that someone will know about it once they take inventory or reconcile the numbers. These systems are routinely attacked and banks do lose money to fraud, and they invest in security enough so that the cost of fraud is less than the cost of the security measures.

    With voting, the party that loses due to fraud is the public, and especially if there is no paper trail, there is no way to prove that any fraud did actually take place. It's very easy to make machines that count votes, it's basically impossible to make those machines such that no one involved could manipulate the results from the election officials, executives, programmers, and voters. With a paper election, the fraud-proofness is guaranteed though the fact that votes are opened with representatives of the various parties in place, and tallies are signed and published so that any fraud could be easily detected by the interested parties.

    --

    Make even shorter URLs - 8LN.org