In fairness, French password requirements include one uppercase, one number, and three letters you don’t pronounce.
viraptor 2 days ago [-]
There's no link to that post and I can't find it in other ways. I'm really not sure if this is real. There's also no mention how they're accessible. If it's not accessible from public networks... who cares?
It’s not smart to rely on a single point of failure to protect everything 100%. Maybe if you’re protecting home movies lol. But at the Louvre? Sheesh…
- What if the routers / modems have a security vulnerability?
- What if there’s (accidentally) an exposed ethernet cable somewhere in the museum that would let someone immediately access a private VLAN?
- What if someone breaks into the security room? either physically breaking the door down or stealing the keys to the room. That’s one of the first few passwords i’d guess as a thief.
Normally a security / monitoring room has the cameras on the screen 24/7, so once you somehow get in and somehow there's nobody there and somehow nobody notices you breaking in... you just look at the screen.
acuozzo 2 days ago [-]
> If it's not accessible from public networks... who cares?
Thieves, especially if there's a path to the room in which the cameras are accessed which is poorly covered by the camera distribution.
alberth 2 days ago [-]
CCTV have internet access?
Isn’t this suppose to be a “closed-circuit”.
calimoro78 2 days ago [-]
Still better than 'mot de passe' (password)
hulitu 1 days ago [-]
> The Louvre's CCTV password was "Louvre"
Well, it is a "medium" password. Not "strong", not "weak", but "medium". It has 6 characters (instead of 8-11), it has big letters, small letters, the only thing missing being numbers and special signs. /s
Make security hard for users and the users will skip it entirely.
Rendered at 14:21:48 GMT+0000 (Coordinated Universal Time) with Vercel.
Maybe one of the reasons the poster did not want to link the article is because the audit this finding is from was conducted 11 years ago.
https://en.wikipedia.org/wiki/Swiss_cheese_model
It’s not smart to rely on a single point of failure to protect everything 100%. Maybe if you’re protecting home movies lol. But at the Louvre? Sheesh…
- What if the routers / modems have a security vulnerability?
- What if there’s (accidentally) an exposed ethernet cable somewhere in the museum that would let someone immediately access a private VLAN?
- What if someone breaks into the security room? either physically breaking the door down or stealing the keys to the room. That’s one of the first few passwords i’d guess as a thief.
> What if someone breaks into the security room?
Normally a security / monitoring room has the cameras on the screen 24/7, so once you somehow get in and somehow there's nobody there and somehow nobody notices you breaking in... you just look at the screen.
Thieves, especially if there's a path to the room in which the cameras are accessed which is poorly covered by the camera distribution.
Isn’t this suppose to be a “closed-circuit”.
Well, it is a "medium" password. Not "strong", not "weak", but "medium". It has 6 characters (instead of 8-11), it has big letters, small letters, the only thing missing being numbers and special signs. /s
Make security hard for users and the users will skip it entirely.