GSLOC: thanks for that insight that's interesting. It is possible to see how a place like SSH (I've heard of numerous security lapses here) could allow a device onboard coupled with potentially a lack of search, a political motive and an insider airside could have caused it. MetroJet are fairly adamant that this wasn't technical and was caused by an impact and have taken the unprecedented move of posting the aircraft tech documents online. Someone knows more than we've been told.