Full Disclosure: Re: Re: Fedex Kinkos Smart Card Authentication Bypass

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Re: Re: Fedex Kinkos Smart Card Authentication Bypass

From: Michael Holstein <michael.holstein () csuohio edu>
Date: Wed, 01 Mar 2006 09:10:49 -0500

According to Fedex Kinko's:
"Our analysis shows that the information in the article is inaccurate
and not based on the way the actual technology and security function.
Security is a priority to FedEx Kinko's, and we are confident in the
security of our network in preventing such illegal activity."

Presumably they're depending on the ever-vigilant eye of the highschoolcopyjocky behind the counter to notice somebody inserting a card that'strailing some ribbon cable into one of the readers.


Actually, a lot of "security protocols" depend on just such things :)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Re: Re: Fedex Kinkos Smart Card Authentication Bypass Dude VanWinkle (Mar 01)
- Re: Re: Fedex Kinkos Smart Card Authentication Bypass Lance James (Mar 01)
  - Re: Re: Fedex Kinkos Smart Card AuthenticationBypass Dave Korn (Mar 02)
- <Possible follow-ups>
- Re: Re: Fedex Kinkos Smart Card Authentication Bypass Michael Holstein (Mar 01)
- Re: Re: Fedex Kinkos Smart Card Authentication Bypass Gaddis, Jeremy L. (Mar 01)