Follow

Why you should never post photos of your airline boarding passes online, a morality tale illustrated with former Australian Prime Ministers:

mango.pdf.zone/finding-former-

@acb “For security reasons, we try to change our Prime Minister every six months, and to never use the same Prime Minister on multiple websites.”

@futzle @acb "Cheap tricks such as “Inspect Element” are used by programmers to try and understand how the website works. This is ultimately futile: Nobody can understand how websites work. "
there is some deep truth in there

@acb
quite long-winded, but the funny writing style had me smiling several times. :)

@acb That's a great read. "Instagram, in case you don’t know it, is an app you can open up on your phone any time to look at ads" 😂 😂 😂

@dajbelshaw Indeed, 'fresh' booking refs (they get recycled often), but also freq flier numbers are weak spots. Much less entertaining, the stuff I found on my boarding passes, a post from 2016 zylstra.org/blog/2016/01/board

@ton Ah yes, as you point out, the main weakness is (as ever) airline websites. Which are universally crap, I've found.

@dajbelshaw this posting by Edward Hasbrouck w.r.t. the Tony Abbot boarding pass story, describes in more detail the what/why of these vulnerabilities: hasbrouck.org/blog/archives/00

@acb
Oh my god this is hilarious. Not only is this guy a clever security analyst (hacker by mistake?), he is so damn good at telling stories.

:blobcatgiggle:

Thanks for sharing. :blobthumbsup:

@yuki @acb Check our his other texts! They are just as good!

Sign in to participate in the conversation
Mastodon

Server run by the main developers of the project 🐘 It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!