Go Back  FlyerTalk Forums > Miles&Points > Airlines and Mileage Programs > United Airlines | MileagePlus
Reload this Page >

Discussion of Chris Roberts/One World Labs News Stories Related to UA

Register
Community
Wiki Posts
Today's Posts
Search

Discussion of Chris Roberts/One World Labs News Stories Related to UA

Thread Tools
 
Search this Thread
 
Old Apr 22, 2015, 8:31 am
  #76  
NDN
 
Join Date: Jan 2015
Programs: Marriott Titanium and LTP, Hilton Gold, United Silver
Posts: 786
But a lawyer for Roberts said Sunday that when his client received that call, the caller would only say he or she was from United, and wouldn't give Roberts a name or callback number. When Roberts then tried calling the number back from his phone's caller ID, it rang instead to a resort hotel, and Roberts assumed it was a prank call, Roberts' lawyer said.
It is a violation of code/law to spoof caller id.
NDN is offline  
Reply
Old Apr 22, 2015, 8:34 am
  #77  
In Memoriam, FlyerTalk Evangelist
 
Join Date: Jun 2000
Location: Benicia CA
Programs: Alaska MVP Gold 75K, AA 3.8MM, UA 1.1MM, enjoying the retired life
Posts: 31,849
When United bans a flyer like this, do they share the information with other U.S. carriers or those in IATA? Is UA just the beginning of this travelers's problems?
tom911 is offline  
Reply
Old Apr 22, 2015, 9:09 am
  #78  
 
Join Date: Jun 2004
Location: What I write is my opinion alone..don't read into it anything not written.
Posts: 9,686
Originally Posted by tom911
When United bans a flyer like this, do they share the information with other U.S. carriers or those in IATA? Is UA just the beginning of this travelers's problems?
If United didn't share it, he sure did when he went to the press. Media can be a double edged sword.
fastair is offline  
Reply
Old Apr 22, 2015, 11:34 am
  #79  
Suspended
 
Join Date: Feb 2015
Location: SFO
Programs: UA 1K MM
Posts: 330
Originally Posted by NDN
It is a violation of code/law to spoof caller id.
No, it definitely isn't. I think it should be, but legally you can pretty much put whatever you want in the caller id field.
Garten is offline  
Reply
Old Apr 22, 2015, 11:59 am
  #80  
 
Join Date: Jul 2014
Location: BOS
Programs: 1MM, UA 1k
Posts: 529
Originally Posted by Exterous
I think 'no other recourse' is a leap that is not supported by the discussion here. Is there a long and well established history of companies ignoring\suppressing warnings? Absolutely - Apple, Sony, Home Depot, Target etc etc etc have had warnings that were not addressed much to the detriment of their customers and were not disclosed until after the breach. Does that mean he had no other possible recourse? No and I don't believe anyone has said that. I do, however, think that this Twitter incident has garnered FAR more interest on the issue of UA security than a traditional publishing or warning would have.
Oh? To wit [bold are mine, not OP]:

Originally Posted by Exterous
While there are supposed to be appropriate avenues for reporting this many go ignored until they are brought to public light. Twitter has been used before to report bugs that have gone ignored for extended periods of time despite being submitted through approved processes. It was only when social pressure and notice was exerted via social media that the issues were addressed.

I am not saying that his idea was a good one or that he should or should not have been barred from flying just that social media is becoming a common place to post this sort of information due to a persistent business culture of ignoring issues until the pressure overcomes business as usual....
Originally Posted by JakiChan
Yeah, it doesn't work that way in information security. You know why? Because "publishing" always makes someone look bad. That's why many companies often go out of their way to gag security researchers. In fact they often use the DMCA to do so.

I.e.:
Originally Posted by JakiChan
And he didn't. He tweeted.



Actually, when someone doesn't respond to your vulnerabilities, then yeah twitter is a way to do it. He's tried to talk to the various agencies in the past but they weren't interested in talking to him. Bet they are now.
There are NO ways or means to justify his actions. Whistleblowers who act independently usually have another axe to grind - in his case, bragging about penetrating a plane's network is spurious at best, not leverage to apply "social pressure and notice was exerted via social media"
Imstevek is offline  
Reply
Old Apr 22, 2015, 12:13 pm
  #81  
 
Join Date: Oct 2002
Location: MRY
Programs: UA Platinum 2MM(BIS)
Posts: 181
FBI Warning

http://www.bbc.com/news/technology-32411491


http://www.wired.com/2015/04/fbi-tsa...-onboard-wifi/
Last edited by if1km; Apr 22, 2015 at 3:17 pm
if1km is offline  
Reply
Old Apr 22, 2015, 12:36 pm
  #82  
FlyerTalk Evangelist
 
Join Date: Jul 1999
Location: Ewa Beach, Hawaii
Posts: 10,909
Why oh why would the airlines have the 2 systems integrated together? The inflight wifi/entertainment should have 0 interaction with the flight systems.
Baze is offline  
Reply
Old Apr 22, 2015, 12:56 pm
  #83  
Suspended
 
Join Date: Feb 2015
Location: SFO
Programs: UA 1K MM
Posts: 330
Originally Posted by Baze
Why oh why would the airlines have the 2 systems integrated together? The inflight wifi/entertainment should have 0 interaction with the flight systems.
Since the hardware is installed, it's certainly very useful for the flight systems to be able to use the bandwidth for uploads and downloads. You wouldn't want to depend on it for absolutely essential functions, but there are lots of nice-but-not-flight-critical functions.
Garten is offline  
Reply
Old Apr 22, 2015, 12:59 pm
  #84  
 
Join Date: Mar 2014
Location: SFO
Programs: UA 1K, SPG Platinum
Posts: 211
Originally Posted by Baze
Why oh why would the airlines have the 2 systems integrated together? The inflight wifi/entertainment should have 0 interaction with the flight systems.
My guess: In order to provide data about your flight (altitude, speed, time until destination) within the wifi portal, it needs to get it from the aircraft.
MattR23 is offline  
Reply
Old Apr 22, 2015, 1:11 pm
  #85  
FlyerTalk Evangelist
 
Join Date: Jul 1999
Location: Ewa Beach, Hawaii
Posts: 10,909
Originally Posted by Garten
Since the hardware is installed, it's certainly very useful for the flight systems to be able to use the bandwidth for uploads and downloads. You wouldn't want to depend on it for absolutely essential functions, but there are lots of nice-but-not-flight-critical functions.
Originally Posted by MattR23
My guess: In order to provide data about your flight (altitude, speed, time until destination) within the wifi portal, it needs to get it from the aircraft.
I'm thinking more along the lines of security than showing a passenger the speed of the plane. For security reasons, why would they be integrated, just asking for trouble.
Baze is offline  
Reply
Old Apr 22, 2015, 1:21 pm
  #86  
FlyerTalk Evangelist
 
Join Date: May 2007
Location: Houston
Programs: UA Plat, Marriott Gold
Posts: 12,693
Originally Posted by Baze
Why oh why would the airlines have the 2 systems integrated together? The inflight wifi/entertainment should have 0 interaction with the flight systems.
Originally Posted by Baze
I'm thinking more along the lines of security than showing a passenger the speed of the plane. For security reasons, why would they be integrated, just asking for trouble.
Possibly a AEEC 429 bus from the FMS to get the origin/destination/ETA/speed/altitude for the IFE (Airshow or similar).
mduell is online now  
Reply
Old Apr 22, 2015, 1:22 pm
  #87  
 
Join Date: Dec 2014
Location: lax
Programs: 1k
Posts: 440
I am not a fan at all of wifi and phones/devices on flights.

It is because of the noise and banging on key boards that I have a problem with.
Especially in E when the dude behind you has heavy hands and bangs on the keyboard, shaking your seat as you try to sleep.

But this is a whole different ball game now.

I hope they ban all devices on flights. If one cannot get work done on the ground then .......
Asiatraveler15 is offline  
Reply
Old Apr 22, 2015, 1:42 pm
  #88  
 
Join Date: Mar 2014
Location: SFO
Programs: UA 1K, SPG Platinum
Posts: 211
Originally Posted by Baze
I'm thinking more along the lines of security than showing a passenger the speed of the plane. For security reasons, why would they be integrated, just asking for trouble.
I'll make another guess that they aren't any more integrated than they need to be in order to provide basic functionality.
MattR23 is offline  
Reply
Old Apr 22, 2015, 2:05 pm
  #89  
 
Join Date: Aug 2012
Location: SLC
Programs: DL FO, KM, & 1.7MM; UA nothing; HH♦; National EE
Posts: 6,344
Roberts also told CNN he was able to connect to a box under his seat at least a dozen times to view data from the aircraft's engines, fuel and flight-management systems.
So this guy was opening boxes under seats and connecting into them at least a dozen times. Apparently dozens of passengers seated nearby didn't think this was a bad idea, so none of them alerted flight attendants/crews about his suspicious behavior?
Howste is offline  
Reply
Old Apr 22, 2015, 4:40 pm
  #90  
 
Join Date: Oct 2012
Location: NYC
Programs: AADULtArer
Posts: 5,682
Originally Posted by Howste
So this guy was opening boxes under seats and connecting into them at least a dozen times. Apparently dozens of passengers seated nearby didn't think this was a bad idea, so none of them alerted flight attendants/crews about his suspicious behavior?
That is disturbing indeed. I would have zip tied him to his seat
LaserSailor is offline  
Reply



Advanced Search
Reply Closed Thread Share
Forum Jump

Contact Us - Manage Preferences - Archive - Advertising - Cookie Policy - Privacy Statement - Terms of Service -

This site is owned, operated, and maintained by MH Sub I, LLC dba Internet Brands. Copyright © 2024 MH Sub I, LLC dba Internet Brands. All rights reserved. Designated trademarks are the property of their respective owners.