There is a huge difference between me going to flyertalk by typing flyertalk.com into my browser, or me going to the NY Times website by me typing nytimes.com into my browser, using a connection that I trust and me clicking on a random connection in any public area and entering login information.

I don't care if they use Facebook or not to login. Anybody who passes any login information over a wireless connection they don't know is legitimate to get a few MB of free data is asking for trouble.

It's not about using Facebook for logging in. It's about using a connection you have no clue if it's legitimate or not to log in. It's way too easy now for somebody to set up a mifi or whatever with their connection name and just sit in an airport collecting people's username, passwords, and even credit card information (because if you are stupid enough to do this, you are probably stupid enough to put in a credit card number for overage charges or verification issues if the fake form asks for it).

It's a great idea, but their implementation of it should have people concerned about the security of their information very worried.