Paying the Price of Admission

It was my ex-wife Sarah who introduced me to Dan Savage many years ago. She use to listen to his radio show and podcasts about life and relationships. Ever since I have kept a ear out for his insightful notes on relationships and life.

Paying the price of admission is a fascinating idea.

…the personal sacrifices, large and small, that make long-term relationships possible. For some, the price of admission—what it costs to ride a particular ride—includes “taming one’s sexual desire for the sake of another.”

I would say this is the compromise, but it always sounds like a negative thing. And to be fair theres a lot of negativity towards compromises.

The price of admission sounds a lot more like a neutral and when ever I hear it, I think roller coasters and that can’t be a bad thing…. *smile*

The other thing I find fascinating about the price of admission is the notion of act as if or fake it till you make it.

…the idea is to go through the routines of life as if one were enjoying them, despite the fact that initially it feels forced, and continue doing this until the happiness becomes real. This is an example of a positive feedback loop.

Its makes clear sense when thinking about one person but is really interesting when thinking both people in a relationship is doing this for the benefit of their partner first and themselves secondly.

BA site compromised, again?

British Airways

From Slashdot yesterday, Identity Theft from Tossed Airline Boarding pass?

The Guardian newspaper has a great story about how the gathering of information for anti-terrorist passenger screening databases allowed a reporter and security guru Adam Laurie to lay the groundwork for stealing the identity of a business traveller by using his discarded boarding-pass stub. From the article: We logged on to the BA website, bought a ticket in Broers name and then, using the frequent flyer number on his boarding pass stub, without typing in a password, were given full access to all his personal details – including his passport number, the date it expired, his nationality (he is Dutch, living in the UK) and his date of birth. The system even allowed us to change the information.

So my take on it is, maybe this story is not quite what its cracked up to be. According to many Slashdotters there calling bullshit. But in the past I've also seen how easy it is to exploit BA's online system. I'm actually sure I've emailed BA over 2 years ago and maybe blogged it a while ago. See the problem I had was that my password timed out and I needed to get a eticket for the return journey. So I logged in as Sarah who had a different account then changed a few things in the URL and bingo I was able to see my account details including address, passport number, etc. Now from what I remember I couldn't get the password, but I could change it (which I did). I do remember the membership number, firstname, lastname and email address was all I needed to change the account.

I remember being so shocked at the lack of security and privicy that I tried to delete my account once I got back to the UK. I know for sure I told quite a few people about this flaw but can't quite remember exactly who. Honestly the problem seems to be when your already logged in accessing someone elses account other than your own. Anyway, I guess I should go and see if I can get my old details without a password… Hopefully some mainstream attention like this will force BA to recheck there site and maybe solve the flaw I identified all that time ago.

Comments [Comments]
Trackbacks [0]