Stupid Guest Tricks

Stories about guest behavior in theme parks.
https://unclewalts.com/forum/

New Gate free turnstiles

https://unclewalts.com/forum/viewtopic.php?t=8445

Page 6 of 6

Re: New Gate free turnstiles

Posted: Tue Feb 05, 2013 7:13 am
by WEDFan
ashoutinthedark wrote:The big thing you would have to worry about is malicious code written by someone with the capability to print their own RFID chip. They would be extremely difficult to track, since they could carry the chip in an RFID blocking wallet, and stick it in their pocket when they want it to hit. It would be impossible to catch them without closely monitoring every guest moving through the park, and the potential for damage is astronomical if your systems are all interconnected.
I'm not sure what kind of hack you're thinking of. As I understand it, there is nothing on the chip other than a unique ID (and probably some sort of system tag). That ID is then looked up. About the only thing I know of there would be an embedded SQL attack assuming th ebackend was SQL based, but that's been around so long that the door is usually shut on that. There shouldn't be any opportunity to upload code through the chip.

Re: New Gate free turnstiles

Posted: Thu Feb 07, 2013 10:23 am
by Mayonnaise
I highly doubt this will result in a Robert ') DROP TABLE Students; situation...

8^P

Re: New Gate free turnstiles

Posted: Wed Feb 13, 2013 7:15 am
by WEDFan
Mayonnaise wrote:I highly doubt this will result in a Robert ') DROP TABLE Students; situation...

8^P
You've got it! And, there just aren't that many ways to bridge from a data domain into an execution space.

Re: New Gate free turnstiles

Posted: Sat Apr 13, 2013 10:29 pm
by avengador1
When we got our new RFID annual passes we had to associate our finger biometrics to it. The way they showed us how to use it is to tap the card to the post and have our finger scanned. When the mouse turns green we can enter. So this actually is a two step process before one is allowed to enter.

Re: New Gate free turnstiles

Posted: Sat Apr 13, 2013 10:53 pm
by drcorey
avengador1 wrote:When we got our new RFID annual passes we had to associate our finger biometrics to it. The way they showed us how to use it is to tap the card to the post and have our finger scanned. When the mouse turns green we can enter. So this actually is a two step process before one is allowed to enter.
and when the mouse turns red,
a attack squad comes out and tasers you.

Re: New Gate free turnstiles

Posted: Sun Apr 14, 2013 8:55 am
by CptnSkippy
Mayonnaise wrote:I highly doubt this will result in a Robert ') DROP TABLE Students; situation...

8^P
Ahhh little Bobby Tables... :)

As for RFID, its just a number that looked up. The only problem may be someone generating their own RFID in an attempt to "hijack" someone else's account, which you would need their pin to make any charges.

Re: New Gate free turnstiles

Posted: Sun Apr 14, 2013 11:34 am
by hhsrat
drcorey wrote:and when the mouse turns red,
a attack squad comes out and tasers you.
Don't tase me bro!
All times are UTC-05:00
Page 6 of 6
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/