One of the benefits of living near Boston is the abundance of amazing museums and historic sites available for visit within 50 miles from my homestead.
This weekend the family and I decided to go hit the Museum of Science for a day of learning and fun.
As we were about to leave, I spied an XP-based computer sitting in the corner of one of the wings and was intrigued by the sign on top of the monitor instructing any volunteers to login:
Then I noticed the highlighted instruction sheet taped to the wall next to the machine:
If you're sharp enough, you'll notice that the sheet instructs the volunteer how to remember their login credentials -- and what their password is ('1234') unless they have changed it!
"So?" you say, "That's not a risk. You don't have any usernames!"
Looking to the right I saw a very interesting plaque. It contained the first and last names of the museum's most diligent volunteers who had served hundreds of hours on behalf of the Museum. You can guess where this is going...
I tried for 30 minutes to find someone (besides Megan Crosby on the bottom of the form) to whom I could suggest a more appropriate method of secure sign-on instructions. The best I could do was one of the admission folks who stamped my hand upon entry and ended up with a manager's phone number written on the back of a stroller rental slip.
(In)Security is everywhere...even at the Museum of Science. Sigh.
/Hoff