What is Digg?Sponsored by Travelzoo
$52 and Up—Airlines Slash Fares On Peak Holiday Flights. view!
travelzoo.com - This year, waiting until the last minute is NOT the best strategy. See why.
39 Comments
- dpk87, on 10/12/2007, -4/+23PDF WARNING
- noll, on 10/12/2007, -1/+7So now the guy with a laptop can steal your car and break into your house without leaving a mark.
- speedyrev, on 10/12/2007, -2/+7PDF Warning should be in the title.
- inactive, on 10/12/2007, -2/+7"They can steal your smartcard, lift your passport, jack your car, even clone the chip in your arm. And you won't feel a thing. 5 tales from the RFID-hacking underground."
http://www.wired.com/wired/archive/14.05/rfid.html - TheslaminJ, on 10/12/2007, -1/+6Maybe, you could stick the RFID chip on the top or side of the PDA or even put it inside. Then you could just "swipe" your PDA in front of the door and gain access.
- Scorp888, on 10/12/2007, -0/+5Take one solid phillips screw driver.
Unscrew 4 screws.
Bridge 2 orange wires.
Cackle evily and smile as you gain entry to someones home... - Takteek, on 10/12/2007, -1/+5Wow, very cool article. :)
I'll encourage all my friends to do this so I can steal their RFID code and break into their house. Oops, did I say that out loud? - dbr_onix, on 10/12/2007, -0/+4http://rfidtoys.net/bonus.asp would have been a nicer way to link it (Link from Hackaday..)
- Ben - recursive, on 10/12/2007, -0/+3I suspect it's because adobe's reader is a bloated piece of crap that hogs resources and leaks memory like it had alzheimers. And the browser plugin stays resident after you close the page. Bleh. I like the idea of pdf, but hate the implementation. It's not quite as bad as realplayer, (which I refuse to install out of principle) but similar idea.
- anonatron, on 10/12/2007, -0/+3@elvis314
Security through obscurity is never a good thing. - demonicume, on 10/12/2007, -1/+3very hot DIY. i'll give it a try. maybe someone could find a way to use your cell phone/PDA to unlock a home and set a house alarm. i've seen some progs that let you control your AV equipment - but nothing that'll turn house alarm on/off or lock a door.
- gorkish, on 10/12/2007, -0/+2Argh how many people will continue to claim that this is insecure because the lock circuit just needs to be shorted? Yes that's true but the only place you can short it to unlock it is INSIDE THE DOOR. To do it from outside would require power tools and some pretty intimite knowledge about the specific setup and specific lock. It would be easier to pick the lock.
Dont want the lock to get picked? Fill er up with epoxy. Don't want the keypad to work? Unplug it from the lock controller on the inside. Just make sure you have another way in in case your RFID reader fails. - cpk0, on 10/12/2007, -0/+2Does anyone know what an estimated total cost for this would be?
- inactive, on 10/12/2007, -3/+5replaced adobe with foxit in Firefox..
PDF threat neutralized. - boogie, on 10/12/2007, -0/+2Still unsure about these kind of installations: make sure there are now screws visible, otherwise it could get really easy to gain access... (and what if the batteries are empty or the PC crashes :-)? )
About those "PDF-warnings": Never "just click" on a link... Smart internetting :-) - digitalArtform, on 10/12/2007, -1/+3What he said.
Short the wires and you're in.
You could probably do it without even removing the sensor plate, just work a pair of pointy probes or tweezers into the slightly exposed wires. - clickwir, on 10/12/2007, -3/+5Don't ever link directly to a PDF.
I'd rather someone link to a simple blog post or at least state it in the description. - dobey123, on 10/12/2007, -0/+2You should probably put the RFID sensor on the interior. That way the door will look like a standard electric deadbolt and criminals will be none the wiser.
- Takteek, on 10/12/2007, -0/+1Without being dugg down, can I ask why people hate PDF's so much? Are the computers of people using this site really so horrible that a PDF crashes them or something?
I clicked the link and it took about 15 seconds to load.... : - anonatron, on 10/12/2007, -0/+1@gorkish
I am not saying it is insecure because of the panel being outside, I am just saying I would not trust the security of my house to rfid because it is not secure. - PaulOwen, on 10/12/2007, -0/+1I notice the deadbolt system has a built in battery too, which at some point will stop working.
This could get irritating for people living on their own, and even more irritating for people living with spouses. - vvaduva, on 10/12/2007, -3/+4Nice going....way to warn people this is a PDF jackass submitter...
- gorkish, on 10/12/2007, -0/+1I guess you don't understand, so I'll forgive you, but shorting any wires won't give you access to anything. The worst you could do is to disable or destroy the reader. The reader sends the tag ID to the basic stamp which is on the inside of the door. The stamp compares the read tag to the stored tag and triggers the relay if it matches.
You could; however, (somewhat) easily perform a man-in-the-middle attack on this setup since the card reader's output is not physically secured.
The setup is also ugly. It would have been much cooler had the wiring all been completely within the door. At the very least it would have been easier to mount the reader gear on a wall and simply run the two wires from the relay to the deadbolt unobtrusively through a channel along the edge of the door. - elvis314, on 10/12/2007, -1/+1why the concerns with a rfid deadbolt? It is much more secure than a standard key, why: the common thieves on the street understand more about keys than they do RFID. Yes, in 20 years from now RFID will be common knowledge for the crackheads. The equipment and techniques for stealing RFID tags are much harder to come across than a simple lock pick set used by a locksmith.
I think the big problem is that "techies" always try to find a way to break something rather than embrace it and use it. - MrUnderbridge, on 10/12/2007, -1/+1I think he meant *remotely* with a cell/PDA
- ragingchikn, on 10/12/2007, -1/+1A little unsightly, but a pretty cool idea.
- afex, on 10/12/2007, -0/+0why does everyone freak out about the pdf? i'm assuming most of you have tech jobs and look at data sheets and crap all the time...is this different? (i'm serious - wanna know if theres something i should know about pdf's @ work)
- CheetoBandito, on 12/15/2008, -0/+0Or if you really wanted to gain entry...you can just kick the door in. If someone wants to get into your house, they're going to be able to. This is personal convenience and nothing more.
- andrewdraw, on 01/03/2008, -0/+0http://mp3-4you.blogspot.com/
- RealConspiracy, on 10/12/2007, -0/+0This looks terribly insecure.
- Neo55378008, on 06/01/2008, -0/+0http://forums.trossenrobotics.com/showthread.php?t ...
That guy did :-) the chapter in the book talks about how to set up a system with a computer, the PDF online is because so many people didn't want a computer so the author made a bonus chapter
This guy has an ASP.NET page that runs some C# code to lock and unlock his door from a website on his cell phone - equusdc, on 10/12/2007, -1/+0Perhaps because this is an _additional_ failure point. The lock is still normally keyed and can be picked. Except, as others have noted, the unlock circuit in this case merely needs to be shorted to activate, ergo, all the proxcard goodness is just fluff. This would be cool is if the reader was mounted internally so as not to expose wiring or even indicate its presence and if some attempt was made to cycle the code. Otherwise, you might as well make the interface a fricken doorbell.
- jer2eydevil88, on 10/12/2007, -3/+1I'm game!
- dirtvoyles, on 10/12/2007, -3/+1Wasn't this just posted in NON-PDF form a week or two ago?
- tonyhartfield, on 10/12/2007, -5/+3PDF download extension ftw
- dyergin, on 10/12/2007, -3/+1awesome diy article. direct pdf link, tho. +digg
- boredzo, on 10/12/2007, -12/+9Safari ftw.
(Native support for PDF in the browser! Yay!) - HokieGeek, on 10/12/2007, -5/+2i.... this is hot...
- slackerjack, on 10/12/2007, -5/+2Why not just link to www.hackaday.com? Everyone just takes the links that are posted there and re posts... It gets lame. No digg.
Browsing Digg on your phone just got easier with our enhancements to the 
© Digg Inc. 2009
— Content created and posted by Digg users is