U.S. gets British flyers e-mail and credit card info
Jan 1, 2007, 2:27 pm
#31
Join Date: Aug 2004
Location: Brighton England
Programs: AA Plat, various hotels
Posts: 1,220
By using a credit card to book a flight, passengers face having other transactions on the card inspected by the American authorities. Providing an email address to an airline could also lead to scrutiny of other messages sent or received on that account.
Ive paid by cash and/or cheque before and i guess thats what im going to do from now on. If its a simple return flight theres no need to have an e-mail, a paper copy will do. It does mean i wont be booking flights direct with sites like AA.com, but if it keeps my privacy then thats what i'll do.
Ive absolutely nothing to hide, but thats not the point is it.
Ive paid by cash and/or cheque before and i guess thats what im going to do from now on. If its a simple return flight theres no need to have an e-mail, a paper copy will do. It does mean i wont be booking flights direct with sites like AA.com, but if it keeps my privacy then thats what i'll do.
Ive absolutely nothing to hide, but thats not the point is it.
Jan 2, 2007, 4:32 am
#34
FlyerTalk Evangelist
Join Date: Apr 2001
Location: NYC
Programs: Landry's President's Club, Marriott Silver, Awesomeness EXPLT
Posts: 20,420
By using a credit card to book a flight, passengers face having other transactions on the card inspected by the American authorities. Providing an email address to an airline could also lead to scrutiny of other messages sent or received on that account.
Ive paid by cash and/or cheque before and i guess thats what im going to do from now on. If its a simple return flight theres no need to have an e-mail, a paper copy will do. It does mean i wont be booking flights direct with sites like AA.com, but if it keeps my privacy then thats what i'll do.
Ive absolutely nothing to hide, but thats not the point is it.
Ive paid by cash and/or cheque before and i guess thats what im going to do from now on. If its a simple return flight theres no need to have an e-mail, a paper copy will do. It does mean i wont be booking flights direct with sites like AA.com, but if it keeps my privacy then thats what i'll do.
Ive absolutely nothing to hide, but thats not the point is it.
cheers
howie
Jan 2, 2007, 4:36 am
#35
A FlyerTalk Posting Legend
Join Date: Oct 2002
Location: back to my roots in Scotland!
Programs: Tamsin - what else is there to say?
Posts: 47,843
The interesting bit is how far they can get within the British system - if I use a UK based ISP, and a UK bank, how easy is it for them to get the court orders to have a look at my accounts? NSA has no power (so far as I know) to just look at things in the UK without a court order - a letter (so far as I know) to my ISP will not suffice.
I'd also be looking at keeping one credit card for paying for flights to the US only and using it for nothing else - doesn't matter if they can access what flights I have bought, they should have that information already. But if I didn't want them to see my other transactions, then keeping one credit card for that does limit the information they can gather on me.
I'd also be looking at keeping one credit card for paying for flights to the US only and using it for nothing else - doesn't matter if they can access what flights I have bought, they should have that information already. But if I didn't want them to see my other transactions, then keeping one credit card for that does limit the information they can gather on me.
Jan 2, 2007, 4:39 am
#36
Suspended
Join Date: Jul 2001
Location: Watchlisted by the prejudiced, en route to purgatory
Programs: Just Say No to Fleecing and Blacklisting
Posts: 102,095
The interesting bit is how far they can get within the British system - if I use a UK based ISP, and a UK bank, how easy is it for them to get the court orders to have a look at my accounts? NSA has no power (so far as I know) to just look at things in the UK without a court order - a letter (so far as I know) to my ISP will not suffice.
Also, the UK government has been quite the data surrender monkey; and even if it were not involved in explicit authorization of NSA activities involving UK persons/entities, that doesn't mean a no-go for the NSA & Co.
Jan 2, 2007, 1:50 pm
#37
Join Date: Feb 2001
Programs: IHG Diamond, HH Diamond, BW Diamond Select, Accor Silver, Marriott Gold
Posts: 4,228
If they simply get the information on everyone as a matter of course, then the possibilities for abuse and harm are astronomical. It's been widely reported that the DOJ, FBI, etc, lose hundreds of laptops per year. Putting millions of people's credit card numbers and personal details unnecessarily into the hands of a massive, incompetently run, unaccountable set of organisations in the USA is an utterly stupid security risk. It only takes one idiot to let that data into the wrong hands and you have wide-spread credit card fraud, millions of cards having to be reissued and possibly billions of dollars of fraud and lost productivity.
Jan 2, 2007, 2:43 pm
#38
Join Date: Dec 2006
Location: ZYR, BRU
Programs: QR Silver
Posts: 132
There is an article on arstechnica.com giving more technical detail on this issue. The situation is not nearly as spectacular as the article in The Telegraph would lead one to believe.
Link : http://arstechnica.com/news.ars/post/20070101-8525.html
I still think the US government is overly nosy though. Also I wonder how things work if I book my ticket trough a travel agent (they often have rates not available on the airline's website) ; i.i.r.c. I've had tickets marked as paid in cash even though I paid them by debit card.
Link : http://arstechnica.com/news.ars/post/20070101-8525.html
I still think the US government is overly nosy though. Also I wonder how things work if I book my ticket trough a travel agent (they often have rates not available on the airline's website) ; i.i.r.c. I've had tickets marked as paid in cash even though I paid them by debit card.
Jan 2, 2007, 2:47 pm
#39
Suspended
Join Date: Jul 2001
Location: Watchlisted by the prejudiced, en route to purgatory
Programs: Just Say No to Fleecing and Blacklisting
Posts: 102,095
There is an article on arstechnica.com giving more technical detail on this issue. The situation is not nearly as spectacular as the article in The Telegraph would lead one to believe.
Link : http://arstechnica.com/news.ars/post/20070101-8525.html
I still think the US government is overly nosy though. Also I wonder how things work if I book my ticket trough a travel agent (they often have rates not available on the airline's website) ; i.i.r.c. I've had tickets marked as paid in cash even though I paid them by debit card.
Link : http://arstechnica.com/news.ars/post/20070101-8525.html
I still think the US government is overly nosy though. Also I wonder how things work if I book my ticket trough a travel agent (they often have rates not available on the airline's website) ; i.i.r.c. I've had tickets marked as paid in cash even though I paid them by debit card.
with names the US Government doesn't like.
Jan 2, 2007, 2:58 pm
#40
Join Date: Aug 2006
Location: DCA / WAS
Programs: DL 2+ million/PM, YX, Marriott Plt, *wood gold, HHonors, CO Plt, UA, AA EXP, WN, AGR
Posts: 9,388
I don't believe that's really the point. If they want the information on an individual, they can get it. That's fine. They won't do it very often.
If they simply get the information on everyone as a matter of course, then the possibilities for abuse and harm are astronomical. It's been widely reported that the DOJ, FBI, etc, lose hundreds of laptops per year. Putting millions of people's credit card numbers and personal details unnecessarily into the hands of a massive, incompetently run, unaccountable set of organisations in the USA is an utterly stupid security risk. It only takes one idiot to let that data into the wrong hands and you have wide-spread credit card fraud, millions of cards having to be reissued and possibly billions of dollars of fraud and lost productivity.
If they simply get the information on everyone as a matter of course, then the possibilities for abuse and harm are astronomical. It's been widely reported that the DOJ, FBI, etc, lose hundreds of laptops per year. Putting millions of people's credit card numbers and personal details unnecessarily into the hands of a massive, incompetently run, unaccountable set of organisations in the USA is an utterly stupid security risk. It only takes one idiot to let that data into the wrong hands and you have wide-spread credit card fraud, millions of cards having to be reissued and possibly billions of dollars of fraud and lost productivity.
In that vein, I witnessed a TSA screener at DCA rifiling through a SSSS selectee's wallet today and looking at the cash, papers, and credit cards within. No warrant involved. That, IMHO, is way, way over the line.
Jan 2, 2007, 3:18 pm
#41
Join Date: Oct 2006
Posts: 1,481
The real problem is a lack of checks and balances. I have no problem with the DOJ/FBI/Whatever being able to obtain records pursuant to a search warrant, duly obtained upon showing of probable cause. I do have a problem with an unwarranted and unsupported fishing expedition.
In that vein, I witnessed a TSA screener at DCA rifiling through a SSSS selectee's wallet today and looking at the cash, papers, and credit cards within. No warrant involved. That, IMHO, is way, way over the line.
In that vein, I witnessed a TSA screener at DCA rifiling through a SSSS selectee's wallet today and looking at the cash, papers, and credit cards within. No warrant involved. That, IMHO, is way, way over the line.
Jan 2, 2007, 8:22 pm
#42
Original Poster
Join Date: Sep 2006
Programs: CO Plat, Priority Club Plat, HH Diamond, Avis First, Hertz #1Gold
Posts: 720
As an aside, TSO's can't even get a search warrant - the real police would have to get one.
Jan 2, 2007, 10:53 pm
#43
Join Date: Nov 2005
Posts: 754
As for the TSA, when you submit yourself or your belongings for screener you are giving implied consent and temporarily suspending yoru 4th amendment right - it would be interesting to figure out to what degree that consent allows a TSO to search an individual.
Would a strip search be allowed? Current rules state that a person would be denied boarding and told to come back, and that under no circumstances should a strip search be performed...
Jan 2, 2007, 11:04 pm
#44
Suspended
Join Date: Jul 2001
Location: Watchlisted by the prejudiced, en route to purgatory
Programs: Just Say No to Fleecing and Blacklisting
Posts: 102,095
Depends on the reason for the search whether or not the police would need a warrant.
As for the TSA, when you submit yourself or your belongings for screener you are giving implied consent and temporarily suspending yoru 4th amendment right - it would be interesting to figure out to what degree that consent allows a TSO to search an individual.
Would a strip search be allowed? Current rules state that a person would be denied boarding and told to come back, and that under no circumstances should a strip search be performed...
As for the TSA, when you submit yourself or your belongings for screener you are giving implied consent and temporarily suspending yoru 4th amendment right - it would be interesting to figure out to what degree that consent allows a TSO to search an individual.
Would a strip search be allowed? Current rules state that a person would be denied boarding and told to come back, and that under no circumstances should a strip search be performed...
Last edited by GUWonder; Jan 2, 2007 at 11:10 pm
Jan 3, 2007, 8:03 am
#45
Join Date: Feb 2006
Location: 99654
Programs: Many
Posts: 6,450
Yes, but once a person tracked the message back to one of these shell systems, could they not scan the log and see where the message came from before it was forwarded as an entirely new email?
No matter what you do, if you send info from one computer, the trail can lead back - and since all ISPs have fairly close relationships with the NSA - to the extent that there are private areas at ISP/telecommunication facilities that have NSA boxes that intercept every bit of data traveling through...
No matter what you do, if you send info from one computer, the trail can lead back - and since all ISPs have fairly close relationships with the NSA - to the extent that there are private areas at ISP/telecommunication facilities that have NSA boxes that intercept every bit of data traveling through...
an origine of any electronic message is not as easy as you think.
Sure under normal circumstances, its easy to get a lot of information from
one's ISP, cookies, email trace and time stamps etc...etc... its very hard to
get any useful information if someone really wants to stay anonymous.
You can trace network connections, systems logs and even computers..
but you can only do that if you have access to those systems.
Sometimes you can even find out a lot of information by serching that IP
address on google, but all of this is possible under normal circumstances.
If someone wants to hide, there is little you can do to trace them down. Its
not as easy as you think.
If things were so easy.. you wouldn't be getting so many spams
