Login Now to remove this and all advertisements (GOLD and SILVER members)
Not a member? Register Now for free

Tony Abbott's passport number revealed after Instagram Post

pagingjoan

Established Member
Joined
Mar 30, 2009
Messages
1,876
Now with contactless delivery, shop online to get drinks delivered to your door or pick up in-store in 30 minutes. Lowest Liquor Price Guarantee. Biggest Range.

Recommended by the Australian Frequent Flyer

Flashback

Enthusiast
Joined
Oct 29, 2006
Messages
10,603
Flights
My Map
It's a long watch, but I thought this hacker talk about security issues around PNRs that someone posted in response to the Abbott story was fascinating...
Haven't watched the video, but that was a PC game I played as a kid many times and thoroughly enjoyed it! Back then, Istanbul was Constantinople in the game......
 

2infinity

Member
Joined
Sep 18, 2015
Messages
135
Flights
My Map
It's a long watch, but I thought this hacker talk about security issues around PNRs that someone posted in response to the Abbott story was fascinating...
I have deemed watching that video as a valuable use of an hour of work's time.

OMG. How can the travel system companies, such as Amadeus, think the current situation is acceptable. I'm sure their internal IT system has all the modern firewalls and protections.

It seems the only way the travel industry will change is when there is a major hack that affects many many people worldwide and they are forced to modernise. I just hope I'm not travelling at that moment in time.
 

33kft

Established Member
Joined
Jun 19, 2018
Messages
1,058
OMG. How can the travel system companies, such as Amadeus, think the current situation is acceptable. I'm sure their internal IT system has all the modern firewalls and protections.
You can have all of the fancy hardware that you like, but when you have a house of cards consisting of old legacy mainframe apps with layers upon layers of integration with other systems and providers, you can't just change your patch. What has happened here is an 80s system has stayed an 80s system and we still rely on it today. Nobody has made the economic case for a complete replacement of this system by all parties involved because as they point out, that would affect all of Expedia's automations, the airlines systems, the revenue, ticketing, reservation, routing, award, codeshare, etc systems

Ask any one of those participants when a good time to swap out to a new system is. And then work out how they can all do it, at the same time, without grounding flights (they can't, they won't, which means even if there is already a modern replacement, it will be phased in very slowly - we'll be left with this situation for the next decade plus).

Now would have been a fantastic time to do it, in hindsight. What was missing was the foresight to have a plan in place for the very unlikely event we have just seen, and so instead of a rewrite, we get bandaids. The shutting down of sites that don't conform to security standards (ie moving the problem out to the edge not the core, where you have n instances of different security models and flaws vs 1) and sticking low effort captcha codes on everything.

I've seen a lot of this... a lot. I saw at a very large institution that we would all not like to think does this sort of thing (and holds lots of $$) that every year when a disaster recovery test was scheduled for the big ol 80s mainframe that has all of the logic in it for all of the products across the group, every product team with exposure to it would chuck a tantrum at the potential impact and veto it, so you have ancient systems which haven't even been tested for resilience due to their... age and importance,,,

Anyway, perhaps I should have cut my teeth on mainframe tech instead. I'd have a job for life.
 

2infinity

Member
Joined
Sep 18, 2015
Messages
135
Flights
My Map
You can have all of the fancy hardware that you like, but when you have a house of cards consisting of old legacy mainframe apps with layers upon layers of integration with other systems and providers, you can't just change your patch. What has happened here is an 80s system has stayed an 80s system and we still rely on it today. Nobody has made the economic case for a complete replacement of this system by all parties involved because as they point out, that would affect all of Expedia's automations, the airlines systems, the revenue, ticketing, reservation, routing, award, codeshare, etc systems

Ask any one of those participants when a good time to swap out to a new system is. And then work out how they can all do it, at the same time, without grounding flights (they can't, they won't, which means even if there is already a modern replacement, it will be phased in very slowly - we'll be left with this situation for the next decade plus).

Now would have been a fantastic time to do it, in hindsight. What was missing was the foresight to have a plan in place for the very unlikely event we have just seen, and so instead of a rewrite, we get bandaids. The shutting down of sites that don't conform to security standards (ie moving the problem out to the edge not the core, where you have n instances of different security models and flaws vs 1) and sticking low effort captcha codes on everything.

I've seen a lot of this... a lot. I saw at a very large institution that we would all not like to think does this sort of thing (and holds lots of $$) that every year when a disaster recovery test was scheduled for the big ol 80s mainframe that has all of the logic in it for all of the products across the group, every product team with exposure to it would chuck a tantrum at the potential impact and veto it, so you have ancient systems which haven't even been tested for resilience due to their... age and importance,,,

Anyway, perhaps I should have cut my teeth on mainframe tech instead. I'd have a job for life.
Yep understand the why...........but one day this is going to happen and I hope I'm not travelling at that moment or needing to anytime shortly after
Fan.gif
(aptly taken from the Movie: Flying High)
 

Community Statistics

Threads
86,447
Messages
2,090,466
Members
53,798
Latest member
mytravlution
Top