Since I plan on blogging fairly often, it might be a good idea to configure apache to inform browsers not to cache the site. That fixes the problem of readers not always seeing new blog posts right away. I am running Apache Web Server so here is what I did to disable caching:
First, enable the headers apache module
sudo a2enmod headers
Next, add the following lines to your .htaccess file, or create one if it does not exist:
Header unset ETag
Header set Cache-Control "max-age=0, no-cache, no-store, must-revalidate"
Header set Pragma "no-cache"
Header set Expires "Tue, 1 Jan 1980 01:00:00 GMT"
I was recently featured on a new podcast from Vince called Vince In The Bay. This episode features a few different people from DEFCON including myself where I talk about the presentation I gave as well as some other things. You can check it out here:
If you have ever been on an elevator, you have probably seen (or even used) the elevator phone inside the elevator. By law elevators are required to have some form of two-way communication which usually entails a device connected POTS (Plain Old Telephone Service) or PBX telephone line. Turns out, these devices are easy to take over and use for malicious purposes.
Many elevator phones are programmable in order to allow for different use-cases at different locations. A lot of these can be programmed simply by calling the phone number attached to the elevator phone.
How do we find the telephone number to the elevator phone?
Each phone may have a standard phone line attached to it (RJ-11). Find it and you can "borrow" that connection to find the number to the elevator phone.
You can use a small corded telephone like the one above to connect to the phone line. Once connected, dial 1-800-444-4444. This number is a toll-free Automatic Number Announcment Circuit that will inform you of the phone number you are calling from. Note this phone number down. Also note down the manufacturer or model number of the elevator phone if you can find it.
Look up the documentation for the specific model number of the elevator phone and you will find that you will most likely be able to program it simply by calling the number it is attached to. You will also find that it may have a default password to access programming mode, such as 123456 or 35842#. From there, you can perform actions such as change the message it announces or even change the number it calls when the emergency button is activated. Documentation example here.
How can this be used maliciously?
Most elevator phones will auto answer when called. You can find the phone number to the device, call it, and now you are listening to private conversations happening in the elevator. This has the potential for corporate espionage.
You can cause a Denial-of-Service by changing who the elevator phone calls in case of an emergency.
You can pull a prank by changing the message it announces to people in the elevator car, or the party the phone is calling.
Think of some other things you can do with this. Maybe some social engineering attacks.
PS: Sometimes, you can find the elevator phone's phone number written somewhere in the elevator by maintenance personnel