Dec 31, 2018, 5:37 pm
Last edit by: tcook052
This new annual thread has been carved out of the previous thread in an effort to reduce the number of megathreads on the AC forum. For those interested previous versions are the original 2004 - 2014 thread , 2015 edition, 2016 edition , 2017 edition and 2018 edition.
The original thread started by accident but quickly became a popular place to come and discuss off topic things such as hockey, new movies, or almost anything that wouldn't fit into existing AC forum threads. Air Canada or Aeroplan topics such as flight feedback, in-flight services issues, status or mileage earning/redemption are all topics that should go into existing AC forum threads so others can benefit from this information. Topics about hotels or airlines and/or their loyalty programs, destinations, in-flight travel tech. or anything best discussed elsewhere on FT may be relocated to that forum as this thread isn't meant to import travel topics to this forum that are better discussed on other forums. FT is an amazingly diverse and large community so members are encouraged to seek out all of its resources.
While the conversation is more relaxed as it would be in a lounge that doesn't mean however that the FT rules don't apply here as they definitely do so please refrain from controversial topics such as politics or religion, avoid profanities and treat other lounge patrons with the same respect you expect.
tcook052
Air Canada forum moderator
The original thread started by accident but quickly became a popular place to come and discuss off topic things such as hockey, new movies, or almost anything that wouldn't fit into existing AC forum threads. Air Canada or Aeroplan topics such as flight feedback, in-flight services issues, status or mileage earning/redemption are all topics that should go into existing AC forum threads so others can benefit from this information. Topics about hotels or airlines and/or their loyalty programs, destinations, in-flight travel tech. or anything best discussed elsewhere on FT may be relocated to that forum as this thread isn't meant to import travel topics to this forum that are better discussed on other forums. FT is an amazingly diverse and large community so members are encouraged to seek out all of its resources.
While the conversation is more relaxed as it would be in a lounge that doesn't mean however that the FT rules don't apply here as they definitely do so please refrain from controversial topics such as politics or religion, avoid profanities and treat other lounge patrons with the same respect you expect.
tcook052
Air Canada forum moderator
The Forum Lounge Thread (2019)
Feb 15, 2019, 1:31 pm
#466
Join Date: Jun 2018
Location: YVR
Programs: AC SE100K, Bonvoy Platinum Elite, IHG Gold, Hertz 5*
Posts: 2,132
Has anyone else here had their company force them to stop using Apple Mail and having to use the Outlook app?
I'm so tired of Multi-Factor Authentication. It feels like every time I open my computer or the mail app in my phone I have to wait for a verification code via text. It's cumbersome and annoying as heck.
I don't know why the computer makes me do it so often. I presume because it's traveling so much, but what do I know?
/rant
I'm so tired of Multi-Factor Authentication. It feels like every time I open my computer or the mail app in my phone I have to wait for a verification code via text. It's cumbersome and annoying as heck.
I don't know why the computer makes me do it so often. I presume because it's traveling so much, but what do I know?
/rant
Feb 15, 2019, 2:59 pm
#467
Join Date: Aug 2013
Location: YVR - MILLS Waypoint (It's the third house on the left)
Programs: AC*SE100K, wood level status in various other programs
Posts: 6,232
Text based Two Factor AuthN is both annoying and insecure.
Putting that aside, many companies force their staff to install Mobile Device Management (MDM, also called EMM and now even UEM) on either their personal or the company's phone. Sometimes even on top of 2FM.
This not only restricts email access to a specific client / app but also can be configured to remote wipe or even prevent copy and paste. Tools of the devil but not uncommon.
So yeah, you are not alone.
Putting that aside, many companies force their staff to install Mobile Device Management (MDM, also called EMM and now even UEM) on either their personal or the company's phone. Sometimes even on top of 2FM.
This not only restricts email access to a specific client / app but also can be configured to remote wipe or even prevent copy and paste. Tools of the devil but not uncommon.
So yeah, you are not alone.
Last edited by Bohemian1; Feb 15, 2019 at 3:01 pm Reason: It's Friday and I can't type any more.
Feb 15, 2019, 3:36 pm
#468
A FlyerTalk Posting Legend
Original Poster
Join Date: Sep 2012
Location: SFO
Programs: AC SE MM, BA Gold, SQ Silver, Bonvoy Tit LTG, Hyatt Glob, HH Diamond
Posts: 44,347
Text based Two Factor AuthN is both annoying and insecure.
Putting that aside, many companies force their staff to install Mobile Device Management (MDM, also called EMM and now even UEM) on either their personal or the company's phone. Sometimes even on top of 2FM.
This not only restricts email access to a specific client / app but also can be configured to remote wipe or even prevent copy and paste. Tools of the devil but not uncommon.
So yeah, you are not alone.
Putting that aside, many companies force their staff to install Mobile Device Management (MDM, also called EMM and now even UEM) on either their personal or the company's phone. Sometimes even on top of 2FM.
This not only restricts email access to a specific client / app but also can be configured to remote wipe or even prevent copy and paste. Tools of the devil but not uncommon.
So yeah, you are not alone.
So while they can totally wipe my work profile, they can't touch the rest of my phone. They do have control over my screen timeout though
Feb 15, 2019, 4:00 pm
#469
Join Date: May 2005
Location: YYZ
Programs: AC e75K, *G, SPG/MR PPE
Posts: 315
Android allows "Work Profiles", which is basically a sandboxed section of your user account (I don't know if iOS supports multiple users).
So while they can totally wipe my work profile, they can't touch the rest of my phone. They do have control over my screen timeout though
So while they can totally wipe my work profile, they can't touch the rest of my phone. They do have control over my screen timeout though
Feb 15, 2019, 4:00 pm
#470
Join Date: Apr 2012
Location: Canada
Programs: AC E50k, A3*G, UA*S, MR Titanium, HHonors Gold, Carlson Gold, NEXUS
Posts: 3,669
Feb 15, 2019, 4:07 pm
#471
Join Date: Aug 2013
Location: YVR - MILLS Waypoint (It's the third house on the left)
Programs: AC*SE100K, wood level status in various other programs
Posts: 6,232
There's been a lot of discussion on this going as far back as 2015 IIRC.
As always, Brian Krebs has a nice overview: Reddit Breach Highlights Limits of SMS-Based Authentication
As always, Brian Krebs has a nice overview: Reddit Breach Highlights Limits of SMS-Based Authentication
Feb 15, 2019, 5:18 pm
#472
Join Date: Apr 2015
Location: YVR
Programs: UA Premier Platinum
Posts: 3,759
Because all someone has to do is hijack your phone number to get the codes, and it's pretty easy for an attacker to do that. Using SMS based 2FA is essentially putting your security in the hands of Rogers/Bell/Telus, and we all know how competent their customer service is.
Even worse, some services allow SMS authentication to be used not only as a second factor, but to reset your first factor as well. So someone who hijacks your phone number can access your account without even knowing your password.
Even worse, some services allow SMS authentication to be used not only as a second factor, but to reset your first factor as well. So someone who hijacks your phone number can access your account without even knowing your password.
Feb 15, 2019, 9:54 pm
#473
Join Date: Feb 2004
Location: USA
Programs: AC SE100K, F9 100k, NK Gold, UA *S, Hyatt Glob, Bonvoy Titanium
Posts: 5,195
The security issues listed above got me ready to rant. Yes, SIM cards are way too easy to replace in person. Fake ID, real ID wrong account holder, inside employee making $15 an hour and money on the side. You name it.
I work with some companies who would fire an employee in an instant if they steal office supplies worth $5 or come in late due to a weather emergency.
Yet no punishment at all if (WHEN) they click on obvious phishing emails, disclosing their passwords and getting malware or cryptoware onto the network. Or they wire company funds to a scammer. Plus why would they NOT allow Office macros to run when prompted with numerous warnings. Might even get paid time off while the network is redone.
I work with some companies who would fire an employee in an instant if they steal office supplies worth $5 or come in late due to a weather emergency.
Yet no punishment at all if (WHEN) they click on obvious phishing emails, disclosing their passwords and getting malware or cryptoware onto the network. Or they wire company funds to a scammer. Plus why would they NOT allow Office macros to run when prompted with numerous warnings. Might even get paid time off while the network is redone.
Feb 16, 2019, 12:26 am
#474
Join Date: Apr 2015
Location: YVR
Programs: UA Premier Platinum
Posts: 3,759
There are even attacks that don't involve the target's own cell carrier. If they can compromise any other carrier that your carrier allows roaming on, they can masquerade as you roaming on another network and get your messages forwarded to them.
Feb 16, 2019, 6:39 am
#475
Join Date: Jun 2018
Location: YVR
Programs: AC SE100K, Bonvoy Platinum Elite, IHG Gold, Hertz 5*
Posts: 2,132
Y'all are scaring the bejeezus out of this naive and technologically stupid soul.
I am sitting here questioning everything I have stored and done on my work phone - personal texts/emails/finances etc. I stopped using 2 phones a while back. Sounds like it is time for another personal phone.
Sometimes ignorance is bliss.
I am sitting here questioning everything I have stored and done on my work phone - personal texts/emails/finances etc. I stopped using 2 phones a while back. Sounds like it is time for another personal phone.
Sometimes ignorance is bliss.
Feb 16, 2019, 11:27 am
#476
A FlyerTalk Posting Legend
Original Poster
Join Date: Sep 2012
Location: SFO
Programs: AC SE MM, BA Gold, SQ Silver, Bonvoy Tit LTG, Hyatt Glob, HH Diamond
Posts: 44,347
Android work profiles ftw
Feb 16, 2019, 11:57 am
#477
Join Date: Jan 2016
Location: YYZ
Programs: Only J via Peasant Points, 777HDPeasant or The Unexpected Virtue of Ignorance and Narcissism.
Posts: 5,954
Feb 16, 2019, 2:56 pm
#478
Join Date: Jun 2018
Location: YVR
Programs: AC SE100K, Bonvoy Platinum Elite, IHG Gold, Hertz 5*
Posts: 2,132
Is the above possible on ios? Separation like that would be nice.
Feb 16, 2019, 3:29 pm
#479
Join Date: Jan 2017
Location: Halifax
Programs: AC SE100K, Marriott Lifetime Platinum Elite. NEXUS
Posts: 4,569
Stock Google has entirely different accounts. I don't know how Samsung implements profiles, but different accounts on the stock OS is totally different.
Feb 16, 2019, 5:31 pm
#480
A FlyerTalk Posting Legend
Original Poster
Join Date: Sep 2012
Location: SFO
Programs: AC SE MM, BA Gold, SQ Silver, Bonvoy Tit LTG, Hyatt Glob, HH Diamond
Posts: 44,347
I'm in Vancouver getting a pedicure.