Fun Fact: To sign into the Walmart site for associates, to see my schedule for tomorrow or call out sick, I need to use a device that I physically brought to work to confirm Two Step Authentification on, and then when I use the device now I need to enter the authenticator code within the 30 second window that it is valid before a new one is generated. I can only do this on my tablet, not on a PC, and my tablet has 0 ethernet ports, 0 USB ports, and the only times it is not in my possession is when it is in my locker at work, or locked in my house when I am at church.
For me to make sure that I go in at 10 tomorrow, and not some earlier time, there is more security than a machine that, for all intents and purposes, controls the fate of the Mortal Realm Itself.
I can speak from experience... products sold to the government are absolute SHIT. Things that would never ever pass in the private sector get lapped up in seconds.
whoever controls the process and fuck with the machines and not get caught or punished.
Built in plausible deniability. If they ever get caught (a HUGE if), blame will be assigned to some poor low level schmuck who was acting as a 'lone wolf'.
Dude, I remember windows Millennium Edition. Especially the part where after 8 hours on the phone to India it still wouldn't work and my dad threw the entire thing out the second story window.
What they're really talking about here, if I read between the lines of the report correctly, is a suite of software programs from the vendor (dominion), installed by the customer OR by Dominion staff, on hardware provided by the customer (Antrim County, MI). The Customer is likely on-the-hook for providing up-to-date best-practices-compliant computing hardware. The violations listed above, in addition to the failures to update antivirus and apply windows patches, are the fault of the IT vendor/employee/additional-duty for the county. HOWEVER, a well-written installer from Dominion would fail at install if it detected invalid host config items.
Speaking of /pol/, the shills are really worried over there at the moment. The "Cope MAGAtards" threads are becoming more and more frenetic and desperate.
It would of course be built on a "general computer platform". What the fuck else is there? 99.99999% of shit built today is sadly on Intel processer-powered Windows shit boxes. Most people don't comprehend why this is bad for things you need to give a shit about with regards to security, certainly not the people making the decisions. All they see is: Windows coders are a dime a dozen. A secure system could be built, but it would cost too much for anyone to consider.
Dominion ImageCast X machines seem to run an old version of Android (v5.1.1 or something like that). Of course, Android can be run without Google services so I would assume this is AOSP which is a basic Android without all the Google baggage (Play services, etc).
Fun Fact: To sign into the Walmart site for associates, to see my schedule for tomorrow or call out sick, I need to use a device that I physically brought to work to confirm Two Step Authentification on, and then when I use the device now I need to enter the authenticator code within the 30 second window that it is valid before a new one is generated. I can only do this on my tablet, not on a PC, and my tablet has 0 ethernet ports, 0 USB ports, and the only times it is not in my possession is when it is in my locker at work, or locked in my house when I am at church.
For me to make sure that I go in at 10 tomorrow, and not some earlier time, there is more security than a machine that, for all intents and purposes, controls the fate of the Mortal Realm Itself.
My WoW authenticator from 2005 had more security measures in it than all of the dominion machines put together.
My cat's breakaway collar is more secure than the dominion machines.
If 2020 has taught me anything, it's that almost NOTHING works the way I think it does.
But it works the way it was intended to
THIS
If only "the most secure election in history" had 1/10th as much security.
^
I can speak from experience... products sold to the government are absolute SHIT. Things that would never ever pass in the private sector get lapped up in seconds.
this is actually why they buy them. insecurity means whoever controls the process and fuck with the machines and not get caught or punished.
Built in plausible deniability. If they ever get caught (a HUGE if), blame will be assigned to some poor low level schmuck who was acting as a 'lone wolf'.
and yet the government is who puts regulations on the private sector...
The Dems don't care and aren't hiding anymore. They are doing whatever they want
“The People’s Republic of the United States”
Should know by now rules are for pussies who follow them.
no DARE... Antivirus out of date... No security patches...
Antivirus more than 4 years out of date.
No patches for more than 2.5 years.
like i said..
Yup.
Very Venezuelan.
I work in Cybersecurity. Most of my colleagues voted for Hillary - even though muh private email server.
Humans can't easily break free of the media conditioning.
We've got Windows ME here
It couldn't be Vista since no drivers would work
Dude, I remember windows Millennium Edition. Especially the part where after 8 hours on the phone to India it still wouldn't work and my dad threw the entire thing out the second story window.
Apparently it wasn't even PCI compliant... shit. I have to have that for my website to work.
What they're really talking about here, if I read between the lines of the report correctly, is a suite of software programs from the vendor (dominion), installed by the customer OR by Dominion staff, on hardware provided by the customer (Antrim County, MI). The Customer is likely on-the-hook for providing up-to-date best-practices-compliant computing hardware. The violations listed above, in addition to the failures to update antivirus and apply windows patches, are the fault of the IT vendor/employee/additional-duty for the county. HOWEVER, a well-written installer from Dominion would fail at install if it detected invalid host config items.
anyone certifying results from this mess is liable for treason
Speaking of /pol/, the shills are really worried over there at the moment. The "Cope MAGAtards" threads are becoming more and more frenetic and desperate.
It would of course be built on a "general computer platform". What the fuck else is there? 99.99999% of shit built today is sadly on Intel processer-powered Windows shit boxes. Most people don't comprehend why this is bad for things you need to give a shit about with regards to security, certainly not the people making the decisions. All they see is: Windows coders are a dime a dozen. A secure system could be built, but it would cost too much for anyone to consider.
As a former sysadmin... basically our elections are being ran by the kind of people who used to put coffee cups in their CD trays.
Paper ballets are less secure. They cannot even be plugged into a power outlet. So this is fine right?
Dude, those plastic locks for kids are more secure than that Dell
And Georgia paid $107 million last year for it
Can't have the customer rigging the slot machines
FFS. Come on man!
FOOKIN ALE
Lol dude, vending machines have better security than dominion.
It is closed source and proprietary. That is all I need to know.
Plus these systems were HUNDREDS OF MILLIONS, but they ran on standard pcs with standard OS.
Indeed.
Dominion ImageCast X machines seem to run an old version of Android (v5.1.1 or something like that). Of course, Android can be run without Google services so I would assume this is AOSP which is a basic Android without all the Google baggage (Play services, etc).