Yeah, 'tis true.

Makes me wonder about jimpop's status though...

I know next to nothing about bulletin boards, so this duplicity is totally a mystery to me.

How about youScottC ? As a very internet savvy guy, do you have any insights as to how this site can show all FlyerTalk posts, up to the minute, and still not be FlyerTalk?

I have just taken the admittedly illegal step of registering a duplicate ID. I did this solely for the purpose of seeing (and telling you) what would happen if I tried registering and posting with it through Fliertalk.com.

Even after registering with it there, I was not able to log in using it on Fliertalk.

It did, however, register me with FlyerTalk and I was able to sign in with it here and make this post.

It is very possible (although I don't know) if Fliertalk received the information that I supplied to register and/or log in (I used a different password).

What is clear, however, is that I am now registered with FT with two user names, which is against the TOS so I would like to request the mods to remove "DovsterDuplicateID" from the databank.

Dovster

I am just confirming that I did, indeed, make the above post and it was not someone trying to impersonate me.

Yes we should be totally clueless like you CameraGuy.

It's a URL not the site, and most people that revisit have it has a bookmark to the correct URL, not as the false one.

He is correct and you are the utterly irresponsible for red flagging this, quick lets land this plane someone wrote BOB on a sick bag.

Get over it people sites with like names are registered daily

And for the people that can not read "Most Sites are Registered Misspelled"

Get over it, it's nothing new!

And you are? This has happen to almost every website on I've delt with on the internet, this is nothing new.....

---

Ok thanks. I'll try to do so in the future but in this case I've already read your post!

In any case, enjoy the Columbus Day holiday everyone!

Mark

{Deleted the histrionics}

Alas, you are too new of a poster to realize the history FT has with password scamming and parody websites, among other things.

It is a real concern to FT members, as it has happened in the past.

In reality, after pondering the situation, I suspect I know that this is. I believe it is a parody website set up many years ago by an individual who was against the Save SkyMiles movement. Since the Save Skymiles era is over, it seem the individual in question has made it a front end to FT.

Oh please, does your post count on this site matter to the amount of work I've done elsewhere? Post count does not matter, as I've said in another post on this site in another area.

So? it happens on Every website that does not enforce key based logins, are you saying that Flyertalk should offer bank type security?

It happens with banks daily and many other websites, if you look at the DNS registried daily, you would see that the majority of those are mispelt (and for what reasons)

Unless you are going to issue RSA keys or alike you are on a loosing battle, the fact is, I could open www.flyertalk.cz (for example) and make it look the the same and there is little that could be done for months, and little legal process to get it removed for the same period.

The fact is scamming is part of the internet, calling out, call the sky is falling, but it will happen over and over, month on end and it is up to the users to make sure they enter the correct URL.

The simple way would be for Flyertalk to go secure Https and get a certificate, making every load the Certificate on entry.

End of the day, you will suffer this for years on end

How long did you lurk here prior to registering? I don't care about post count, I was looking at your registration date.

That is not what I said, I said given the acrimonious history between some members here, some people are concerned about it. And I used to be in Data Security, and that is NOT what I was talking about.

As for my last two sentences, they had nothing to do with website security or spoofing, or trademark violations, or squatters. I just said that based upon what I could remember, I believe I knew what that site was used for several years ago, and that is ancient history, so the registrant set it up as nothing more than a mirror.

Plus, CameraGuy tend to get a bit dramatic occasionally.

(No offense, CG. )

fliertalk.com is not owned by flyertalk.com. It does, however, point to our servers, for now. I would not be concerned up to this point if you put you password into the site because it was on our servers ^. That does not mean that it will continue to be. The domain owner has the right at anytime to change the site to whatever they want, whether it be their own site that competes with flyertalk or a site that looks and feels like flyertalk but is not. For your security the flyertalk servers will not allow login from this domain or any others.

----

Thank you Joshua.

mark

Given what Joshua said I concede you guys who were worried were right and I was wrong. In fact, I believe Joshua missed one possibility: The person owning the site could, even if it was directly pointed at the real FT, have a keylogger or equivalent running -- and thus be able to steal passwords after all.

Sounds like the probability of that in this particular case was small but it was, nonetheless, possible.

---

Well, I'm not sure that I undertand? Something, in this case accessing FT, can nearly always possibly happen, almost anywhere, at any site, no? We take risks each and every day, no? Hopefuly, however, we take care also!

Even the real FT could theoretically do that! Yet I doubt it!

Or someone could hack the site itself. So....

We all take a chance when we go online, and when we enter a URL or click on a link, I think!

Be prudent and go to flyertalk.com

As I said before above, I'd contacted Randy long ago concerning this specific matter, and he assured me long ago as well that he was well aware of it and was addressing such issues.

Thanks again, Joshua.

Enjoy FT everyone

Mark

OK, let me try to explain. Suppose site A (owned by someone else other than FT, as in this case) redirects all traffic to the real FT. If you go to site A and try to log in to FT, FT will now not let you log in, Joshua fixed that.

BUT -- if site A looks like FT and it misleads you into trying to log in, you won't realize something is wrong until you try to log in once or more and it doesn't work. If site A is capturing keystrokes before routing to FT, the owner of site A will know your FT handle and password by reading the site A capture log.

This practice is a variant of the internet con known as "phishing."

I think that is what the earlier posters were, validly it now seems, concerned about.

I apologize if you knew that all along and were referring to something else in your post just above.