On Thursday, two Republican Senators, Mike Lee (R-UT) and Tommy Tuberville (R-AL), revealed a bill that would abolish the Transportation Security Administration (TSA) in favor of private security at the nation's airports and other secure venues. //
The measure would officially abolish the TSA three years after being enacted into law, which the senators believe would provide time for security needs to be privatized. //
The TSA should be eliminated and replaced with privatized solutions that are more targeted, streamlined, and where appropriate accountable to limited government oversight," he added.
The senators specifically denote in the legislation that the reorganization plan can't require private security companies to do warrantless searches or extend the TSA in any way. //
Private security firms, arranged by the local airports' management, have the advantage of being accountable. Screw-ups can lead to a company losing a lucrative contract, so there is a strong incentive to be effective. TSA, as with any bureaucracy paid for by taxpayer dollars, has no such incentive.
FlyCASS essentially offers FAR121 and FAR135 airlines a way to manage KCM and CASS requests without having to develop their own infrastructure. It pitches itself as a service requiring zero upfront cost to airlines that can be fully set up in 24 hours, with no technical staff required.
The researchers note that each airline has its own login page, which is exposed to the internet. According to the research, these login pages could be bypassed using a simple SQL injection.
"With only a login page exposed, we thought we had hit a dead end," Carroll said in his writeup. "Just to be sure though, we tried a single quote in the username as a SQL injection test, and immediately received a MySQL error.
"This was a very bad sign, as it seemed the username was directly interpolated into the login SQL query. Sure enough, we had discovered SQL injection and were able to use sqlmap to confirm the issue. Using the username of ' or '1'='1 and password of ') OR MD5('1')=MD5('1, we were able to login to FlyCASS as an administrator of Air Transport International!" //
When it came to disclosing the findings, it seems the US authorities didn't want this coming out, if the researchers' account is anything to go by. Carroll says the DHS completely ignored all attempts to disclose the findings in a coordinated way.
He also claimed the TSA "issued dangerously incorrect statements about the vulnerability, denying what we had discovered." //
"After we informed the TSA of this, they deleted the section of their website that mentions manually entering an employee ID, and did not respond to our correction. We have confirmed that the interface used by TSOs still allows manual input of employee IDs."
As if that weren't twisted enough, now we learn that the TSA whistleblowers who came forward with their concerns about this development are facing retaliatory investigations of their own. //
As Leavitt also notes on Twitter/X, the Quiet Skies program has not even been shown to be effective at its purported aim. //
The whole Quiet Skies program seems like a civil liberties nightmare anyway.
Over four years the OIG examined, the found Quiet Skies confirmed precisely zero passengers as aviation security threats. I can think of far better uses for the hundreds of thousands of dollars DHS puts into this.
I ran into a friend, actor, and politician, Siaka Massaquoi, who looked fresh as a daisy. “Jeez,” I said to him. “This is brutal.”
“Yeah,” he replied with a smile. “I’ve been here since 3:30 am.”
What in the world? That was two hours before we arrived.
Turns out Siaka is on a “list.” He entered the Capitol on January 6, 2021, but has not been charged with anything. His apartment was raided by over 20 armed FBI agents on June 10, 2021, and he’s been under investigation ever since for “associating with members of a social media group.” //
As I keep repeating, he has not been charged or convicted of anything – isn’t this exactly what the Fifth Amendment was designed to prevent? Namely that you can’t be punished without due process? Where’s the due process here?
Julie Kelly 🇺🇸
@julie_kelly2
·
Follow
Americans charged—not convicted, charged—with petty offenses related to Jan 6 are on terrorist watch list at TSA and must undergo invasive, extensive searches numerous times. Any Republican who thinks this regime won’t do the same under “red flag” laws is an idiot. Or John Cornyn
2:25 PM · Jun 12, 2022
In an exclusive breaking story, several Federal Air Marshal whistleblowers have come forward with information showing that former U.S. Representative and Presidential candidate Tulsi Gabbard is currently enrolled in the Quiet Skies program. Quiet Skies is a TSA surveillance program with its own compartmentalized suspected terrorist watchlist. It is the same program being weaponized against J6 defendants and their families. Quiet Skies is allegedly used to protect traveling Americans from suspected domestic terrorists. //
Air Marshals were first assigned to Gabbard on Jul. 23, a day after she criticized Kamala Harris, Biden, and the National Security State in an interview with Laura Ingraham. FAMs were mobilized on Jul. 24 and assigned to their first flight with her on Jul. 25.
Q1. What kinds of batteries does the FAA allow in carry-on baggage (in the aircraft cabin)?
Q2. What kinds of batteries does the FAA allow in checked baggage (including gate-checked bags)?
all the tags from https://b.plas.ml
1st-amendment 2nd-amendment 4th-amendment 5th-amendment 9/11 a8 abortion acl adhd afghanistan africa a/i air-conditioning amateur-radio amazon america american android animals anti-americanism antifa anti-semitism antiv antivirus aoip apollo apple appliances archaeology architecture archive art astronomy audio automation avatar aviation backup bash batteries belleville bible biden bill-of-rights biology bookmarks books borg bush business calibre camping capitalism cellphone censorship chemistry children china christianity church cia clinton cloud coldwar communication communist composed computers congress conservatives constitution construction cooking copyleft copyright corruption cosmology counseling creation crime cron crypto culture culture-of-death cummins data database ddt dd-wrt defense democrats depression desantis development diagrams diamonds disinformation diy dns documentation dokuwiki domains dprk drm drm-tpm drugs dvd dysautonomia earth ebay ebola ebook economics education efficiency electricity electronics elements elwa email energy engineering english environment environmentalism epa ethernet ethics europe euthanasia evolution faa facebook family fbi fcc feminism finance firewall flightsim flowers fonts français france fraud freebsd free-speech fun games gardening genealogy generation generators geography geology gifts git global-warming google gop government gpl gps graphics green-energy grounding hdd-test healthcare help history hollywood homeschool hormones hosting houses hp html humor hunting hvac hymns hyper-v imap immigration india infosec infotech insects instruments interesting internet investing ip-addressing iran iraq irs islam israel itec j6 journalism jumpcloud justice kindle kodi language ldap leadership leftist leftists legal lego lgbt liberia liberty linguistics linux literature locks make malaria malware management maps markdown marriage mars math media medical meshcentral metatek metric microbit microsoft mikrotik military minecraft minidisc missions moon morality mothers motorola movies mp3 museum music mythtv names nasa nature navigation navy network news nextcloud ntp nuclear obama ocean omega opensource organizing ortlip osmc oxygen paint palemoon paper parents passwords patents patriotism pdf petroleum pets pews photography photo-mgmt physics piano picasa plesk podcast poetry police politics pollution pornography pots prayer pregnancy presentations press printers privacy programming progressive progressives prolife psychology purchasing python quotes rabbits rabies racism radiation radio railroad reagan recipes recording recycling reference regulations religion renewables republicans resume riots rockets r-pi russia russiagate safety samba satellites sbe science sci-fi scotus secularism security servers shipping ships shooting shortwave signal sjw slavery sleep snakes socialism social-media software solar space spacex spam spf spideroak sports ssh statistics steampowered streaming supplement surveillance sync tarsnap taxes tck tds technology telephones television terrorism tesla theology thorium thumbnail thunderbird time tls tools toyota trains transformers travel trump tsa twitter typography ukraine unions united.nations unix ups usa vaccinations vangelis vehicles veracrypt video virtualbox virus vitamin vivaldi vlc voting vpn w3w war water weather web whatsapp who wifi wikipedia windows wordpress wuflu ww2 xigmanas xkcd youtube zfs