Feeds

BOFH: The secret gentlemen's club

Never say never again

  • alert
  • submit to reddit

Reducing the cost and complexity of web vulnerability management

Episode 8

It's mid afternoon and the PFY and I are sneaking around the building in pursuit of the IT director because he's acting funny...

[READER: DEGAUSS NOW FOR FLASHBACK REALISM!]

...10 minutes ago...

"Right, so you just want this signed then?" the director asks, scribbling blindly at the bottom of the page. "Okay, now if you'll just excuse me..."

"Thanks," I say, realising he wasn't the least bit interested in what he was signing. "Oh! and I just remembered that we needed to get a batch of LTO4 tapes."

"Uh-huh, well I'm sure you can bring that to me later."

"No hang on, I can fill the P/O out now," I say, grabbing a blank purchase order from a tray on the desk.

"Tell you want - how about I sign it and you just fill it in at your office?"

"Sure."

>scratchy< >DASH<

[READER: DEGAUSS AGAIN!]

...Present day...

Now, I'm not one to check a gift horse for cavities, but after an IT director signs what's effectively a blank cheque without batting an eyelid the PFY and I want to know what's up...

"Entering the boardroom," the PFY chirps over the walky-talky.

"So he's in there?" I say, when I get there moments later.

"Yep."

"Who else went in there?"

"No one."

"Hear anything?"

"Nothing," the PFY says, opening the door...

...to an empty room ...

"He's gone!"

"Are you SURE you saw him go in here?" I ask.

"Positive!"

"So there must be some other way out..." I say, checking the carpet for... "THERE!"

"Where?"

"There - see there's a wear pattern in the carpet which ends there. There's a door there. And that - that's not a blanking plate, that's a prox reader!"

"Wow!" the PFY says, holding his card up to the reader. "Nothing!"

"I'll try mine," I say... Nothing. "Wait a minute, what about if I try..."

>bip< >bip< >hummmm<

"What card was that?" the PFY asks as we step into a small alcove. The door humms closed behind us and a fan above us whirrs into life. "This is like a bloody airlock!"

"Indeed," I agree. "The card was a diagnostic one that happened to fall from the wallet of our alarm and lock installer."

"Just happened to 'fall' did it?" the PFY asks sarcastically as another door hums open in front of us. "Bloody hell!"

I concur with the PFY as we enter a well-lit office-sized white room with a couple of armchairs, a small table and a selection of today's newspapers. At the other side of the room, another door with a red light glowing above it.

"This is like a Bond movie!" the PFY gasps "What's behind the door, do you think?"

"Let's find out shall we?" I say, trying the handle. "Locked - and no prox reader. But wait, if I slide the card between the lock and the back of the door frame...” >click<

"Oh," the PFY says, disappointedly as we enter the next - smaller - room and the door >clack

"Yes, a bit of a disappointment,", I admit as we find the room contains only a small handbasin and a cupboard with a selection of men's toiletries. "You know, I think this might be a..."

>FLUSH!<

"...executive toilet," the PFY finishes disappointedly. "I thought they only had these in B-grade sitcoms."

!!!

>click<

"What the hell are you doing in here!?" the director snaps as the door >clack

"I could ask you the same thing!" I say.

"I have a KEY for this room," he responds, waving a card at me. "Given to me by the CEO himself. It's a huge honour to get access to this room - half the board don't even know it exists!"

"And how'd you come to get one?"

"I... helped the CEO with a sensitive matter."

"Not the sensitive matter that the PFY and I were working on a couple of weeks back - recovering the images from a digital camera card?" I ask.

"I..."

"So TECHNICALLY it should be us using this and not you?" the PFY asks.

"Oh you'd never get access to this place, it's worse than a gentlemen's club," he responds. "There's rules! Put one foot wrong and you're out! But if you're in, the world's your oyster - you're fast-tracked for success!"

"I see," the PFY says. "So how do we get out?"

"What do you mean?"

"We seem to be locked in."

"You shouldn't be in here in the first place - it's all computer controlled. You've probably upset it. But I'll just try >Gush< >Whirrr< >Click< There!"

"Ah," the PFY says as we exit to the large room. "You have to wash your hands before the door opens."

"Yes," the director says, pointing at the exit. "But that door's supposed to open at the same time."

"So we are locked in?" the PFY says, looking at the ceiling. "I could trip the fire alarm, which'll probably open the doors."

"NO!" the director blurts. "If there's any upset - however small - they'll find out from the card that I've been in here and I'll be blackballed."

"Let's think of this logically," I say. "The place isn't on the normal access network and has some form of door control logic. I'm guessing that the controller is local to this room, so scan the place for an access panel..."

"Found it!" the PFY says seconds later after moving an armchair. "Let's have a look then... Ah, the door logic's based around a PIC! Those are the input lines, those are the outputs and they're the power transistors."

"But can you open the door without raising an alarm?"

"Yeah - if you give me some time - but all this talk of toilets and everything, I'm bursting!"

"Use the toilet!"

"I can't, THAT door's locked!"

"I... use.. the basin then," the Director says. "But you must NEVER tell anyone!"

"Ok."

>click< >clack<

Two minutes later...

>click< >clack<

"So you're ok then?" the director snaps hurriedly.

"Yeah.. but uh... do any of you have any paper?"

"Oh, he's passed out!" I blurt. "Skip the donkey work, power the controller down and it'll probably fail open."

>prod< >click< >clack< >whirr< >humm< >humm<

Out not a moment too soon either, as the CEO skulks past us towards the boardroom..

[READER: DEGAUSS FOR FADE OUT]

Reducing the cost and complexity of web vulnerability management

More from The Register

next story
Wanna keep your data for 1,000 YEARS? No? Hard luck, HDS wants you to anyway
Combine Blu-ray and M-DISC and you get this monster
US boffins demo 'twisted radio' mux
OAM takes wireless signals to 32 Gbps
Apple flops out 2FA for iCloud in bid to stop future nude selfie leaks
Millions of 4chan users howl with laughter as Cupertino slams stable door
Students playing with impressive racks? Yes, it's cluster comp time
The most comprehensive coverage the world has ever seen. Ever
Run little spreadsheet, run! IBM's Watson is coming to gobble you up
Big Blue's big super's big appetite for big data in big clouds for big analytics
Seagate's triple-headed Cerberus could SAVE the DISK WORLD
... and possibly bring us even more HAMR time. Yay!
prev story

Whitepapers

Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Intelligent flash storage arrays
Tegile Intelligent Storage Arrays with IntelliFlash helps IT boost storage utilization and effciency while delivering unmatched storage savings and performance.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.