They should lose their contracts for failing to wipe the data off the hard drives.
They likely will as this is almost certainly a violation of ITAR regulations.
Northrup Grumman does very little that is non-military.
They most certainly will not lose their contracts over this. They'll find a way to blame the lost data on some tiny sub-subcontractor that the subcontractor responsible for disposing of used equipment hired to wipe the drives, and they'll get fired. Or maybe they'll fire the person who kept the data on their hard drive instead of the network drive, and trot out the click-through policy that says "we told you we could fire you for violating this policy."
There's always a weasel-way for companies to get out of these situations by blaming someone for the failure.
I don't know where you'd meet a woman in realspace, since I met my wife on-line. But that was 29 years ago, so that old trick probably won't work any more.
That's why you use a stolen phone. After you've sent your videos, you immediately THROW IT AWAY and steal another one for the next batch. You don't hang on to it for days on end or reuse it for dozens of news reports; that's a sure way to lead the authorities to you.
Just don't keep stealing them from the same person or even from the same place. And don't throw it away or abandon it in the same place, and especially not in front of security cameras. If you're in the midst of the mob, you can drop it at your feet after sending the data.
As a dissident, the better choice would probably be a stolen phone! Going to jail for stealing a phone will get you simple prison time and probably a beating or two. Going to jail for spying and sending videos to Western Agents could get you disappeared. Having an openmoko phone would be highly suspicious from a technology point of view (although it would probably be easy enough to hide stuff in from a bunch of police thugs.)
placebos should be preferred as they dont have side effects.
I'm pretty sure this is incorrect. Granted, they're not very harmful, but you could easily experience things like dry mouth, headaches, muscle aches, etc. Remember, your body is reacting as though it received medicine. If someone gives you a placebo and tells you it's a cold remedy, you will probably experience the same side effects you experience with Sudafed.
The prescribing doctor is the cause of the side effects: "Be sure to take these pills with lots of water and maybe a cracker or two, they're really powerful and give some people a bit of nausea."
It's the sales job that makes placebos work, and part of convincing people that it's effective is to add that "powerful" tag. And nobody would believe a perfect pill with no side effects exists, or we'd all be taking them every day.
Stay with it , its the people who who are longest in the job that become managers.
Hell, that's good enough reason to quit! Manager of a help desk means you have to take the calls of the screamers who escalate themselves above the first line monkeys, and you take the blame every time you're short staffed because Joe and Jane didn't show up 'cause they're hung-over again.
And don't forget that just because you think it's safe doesn't mean that it actually IS safe. Check out the BlueCoat proxy, which is a corporate web proxy/filter that also works on SSL connections (via man-in-the-middle attack.) All your company has to do is drop their own root certificate on your machine, and unless you're in the habit of checking the sites providing your signature, you may never spot it. (Fortunately Firefox displays the certificate's site name next to the padlock icon.) There's also nothing stopping a corporation from installing a key sniffer or remote observation software on their equipment, which includes your desktop.
Just in case you were thinking that you were "safe" blowing whistles on a darknet at work.
I guess the "Post Anonymously" box isn't going to help me now anyway.
Damian P. Kohlfeld, 35, of Valparaiso, Ind., is the owner of Network Foundations, which is based in Chicago. Kohlfeld allegedly supplied the technical know-how for the alleged telemarketing scheme employed by all three companies. The Arizona State University graduate has more than a decade of experience writing software and building computer networks. His latest hit, according to the FTC, was a "spoofing" device that tricked caller ID systems.
A relative was born with cerebral palsy which manifested itself as severe control problems, especially with her hands and upper body, including almost unrecognizable speech. She tried a mouse with a large wooden knob, and later a leather strap, but they were pretty frustrating as her control is so limited. Only close friends and family can understand her speech, so voice recognition has never been an option. But her feet are pretty good, so she's learned to manipulate a track-ball with her toe. It takes her a while, but she can get stuff done. ( I have to say being on line is one of the most liberating things that's ever happened to her. I'm glad she found a tool that works. )
Another relative suffered a stroke fifteen years ago, and she has very little use of her right side and mild aphasia since then. She learned to use her left hand, but complex or multitasking instructions are now beyond her. She needs a distraction-free environment in order to function well.
My point is that many disabilities are uncommon or unique. Some disabilities require a physical change to make the interface work -- it's not typically a problem you can solve in software. Others are environmental. So it's hard to find an off-the-shelf solution for any particular problem, as they're not economical to produce in quantity.
While I agree that it would up the ante for crap games from 90% to 99%, there would still be more novel games overall. They'd be harder to find, hiding amongst the crap games like "Goatse: Hunt for the Treasure", but word of mouth would spread them around quickly.
( Trust me, you do NOT want to go looking for that secret level. )
Bad apples stand out in every walk of life. The good, honest competent people (or at least the ones who aren't egregiously stupid) are almost invisible next to the loud and wrong idiots, who draw attention for being both loud and wrong.
I agree completely that teachers as a profession are maligned more often than is fair. I think much of that is due to their visibility to young people who aren't used to dealing with incompetent people in authority, and having their first taste of "hey, that guy's an idiot! I'm just a kid and I can see he's wrong!" That's a powerful memory maker for just about anyone, and it almost always happens with teachers first.
While I completely agree that this is the best option, this is one of those cases that would screw the rest of us if it was decided on the basis of "OMG - think of the children!" instead of on its own legal merits.
What if the repair guy had found naked pictures of the guy's wife, and posted them on the Internet? Or posted pictures of him naked with his girlfriend, and his wife saw them? What if he found plans to tempt a Senator with a bribe? What if he gave those plans to his competing candidate, instead of the police?
Each of those cases may represent a different legal case, but they could all be "colored" by precedent set in this case.
That's why it's dangerous to think of this as simply "I'll never have child pr0n on my PC." The case isn't just about the content, but about how it was dealt with. I think the SCOTUS was wise to not take this case, and they just let the guy hang for the pr0n. If they had ruled fairly that this was an illegal search, the pornographer would have walked and they would have been ridiculed as "supporting the pornographers" and labeled "activists" by a bunch of morally bankrupt wingnuts, regardless of the correctness of their decision. I think they're wisely saving the "technician searches your PC" decision for a case with less 'radioactive' content.
It's good that you realize you may be stagnating, because you likely are. Since you are self-taught in programming, I'm sure you would benefit from experience with other developers. Code reviews and design reviews are real learning opportunities (at least when done right.) You'll also learn where your gaps in documentation and analytical skills are -- it's easy to write code to your own specs, because you know precisely what you meant. The real test is when other people code to your specs.
That said, however, you may find it hard to just drop a job and pick up another, especially in the current economy. Some people can, but you may have to make sacrifices (moving, commutes, paychecks, hours, etc.,)
And it's not to say that all experience is pleasant: you could easily land with another crappy developer or team, too. (Hopefully you've learned enough from this guy to spot and avoid another similar set of circumstances.) But you'll learn from it all.
Life is really too short to spend 50% of it at a job you hate. Good luck!
Don't worry about it. Stupid criminals can be shown a sign that says they're being videotaped, and that the video tape will be used as evidence against them in the case of a crime. They can be told in the morning that the video cameras are watching. They can be shown the TV monitor displaying what the camera shows. They can sign a document stating that they have been informed of the video equipment used to monitor their activities. They can even see the video camera domes above their heads.
And that afternoon, they commit a crime under the watchful eye of the very camera they were warned about.
We're talking about the dumbest of the dumb here. These are people caught in the pool filters of the gene pool, but haven't been removed yet. Don't worry, they will essentially catch themselves for us.
BTW, boycott the major labels, listen to indie music. By boycott I mean don't just not buy, don't even download or listen.
How do I avoid listening to major label music at work or in a grocery store?
You could try clapping your hands over your ears and loudly shouting "LA-LA-LA!" while you walk down the aisles of the grocery store. You'd probably benefit the other shoppers who would be also unable to hear the Muzak over your masking noise.
I'm not sure how you'd keep the music stopped once you've been committed into the asylum, however.
But why can't he be an evil genius? The world needs more evil geniuses so that we can get more super heroes.
Wow, I never thought of super-villainy from the supply and demand curve viewpoint. If each superhero kills or incarcerates one super villain every month, each super hero is going to go through a dozen evil geniuses annually. And they can't all be super-duper evil geniuses, because any super-duper evil genius will recognize that mortality rate right quick and is likely to make a different career choice, such as stock trading.
I think an associate's degree at age 11 is just about the right time for something horrible to happen that will corrupt him into turning evil. Perhaps there's a super-duper evil genius right now who is plotting to kidnap his mother to turn him into a revenge-motivated evildoer! Maybe the super-duper evil genius is seeking out dozens of these smart kids in advance, hoping to create enough evil geniuses to serve as cannon fodder for the future superheroes, and for them to serve as a distraction for when he puts his ultimate plan for world domination into motion.
What stuff? You mean the raw database? Theoretically, there are various layers of security here: firewalls to the outside, authentication to particular views on the inside where only data you Need To Know is available to you, and proper firewalls on each database server to limit access to the database port(s) and probably ssh.
It seems your theory is kind of flawed, because if their protection was indeed that good the thieves probably wouldn't have gotten the data they did.
I think the reality is they have a firewall, and probably overly simplistic authentication on the databases, and virtually nothing else. Consider an inept DBA running SQL Server 2005 who ties the SQL Server's SA account to the machine's administrator account. And add another inept system administrator who has a shared admin account across all the database servers, as well as some IIS servers and maybe some FTP servers as well. So the hacker worms his way to an admin account on ftp_serve_01.tmobile.com and ta-da! He's suddenly got admin rights to their data!
Never ascribe to ingenuity that which can be adequately explained by stupidity.
If I were an AT&T official and they contacted me? I'd absolutely be interested. I'd also be on the phone to internal corporate security and the FBI before I finished reading the email.
If this story is true, those are some mighty bold thieves. AT&T probably has more resources than anyone else on the planet for tracking down the originator of that communication. For that matter, AT&T are probably the ones the FBI contacts when they want to hunt down a bad guy, so you know there's a long relationship there, too.
Times may be tough, but various competing corporations often have informal and even friendly relationships with each other when it comes to Loss Prevention departments. They share info on thieves and threats, and despite outward animosity between two competing companies, their L.P. departments do tend to help each other out with situations like these. I know that's the case in retail, where organized crime investigations actually can have cooperation between companies like Walmart and Best Buy. There's definitely an "old boy's network" behind the scenes as these employees shift between companies and don't forget their old friends. It's a lot like the cop brotherhood (in part because many of the L.P. staffs are actually retired cops.) AT&T likely wants these guys caught almost as much as T-Mobile does.
And why do you think Google is interested in preserving Firefox as an end goal? They are not a non-profit foundation. They are much more like Microsoft or Apple: they want to make money.
One potential way to make money is to control the internet content all the way through end-user delivery. It may enable some things that seem otherwise impossible: delivering protected copyrighted content, for example. If they offered a browser that wouldn't let you save YouTube streams, then maybe the RIAA would let them display music videos. Maybe book publishers would let them display Google Books along a Kindle model. Or maybe Google has a workable micro-payment system in place that depends on the browser not spoofing the for-pay site. Or maybe they just want to make sure that Google AdSense and google-analytics can't be blocked by the end users.
A "non-trustable" browser (like Firefox with all its Greasemonkey scripts and Noscript and AdBlock etc.) can't offer the rights-holders enough assurance that they can deliver their data without it being copied. Chrome may be the guarantee that lets them make money.
Before another DRM flamewar erupts, I'm not saying that Chrome can technically offer any more magic solutions than CSS or copy-protected diskettes or any of a thousand other failed DRM schemes. But like Apple's Fair Play, it might be "enough" protection to convince the copyright holders to distribute their content through Google's tubes.
Because of advanced forms of fraud (and because networks are much more reliable than the dialups of yestermillenia) ATMs no longer work if the network goes down. They shut themselves down. They don't hand out cash when they're offline, because they have no way of authenticating your PIN, your card, or your account.
If it were possible, criminal organizations would have people trying a bad card in a different ATM every hour of every day of every week. Once they "luck" into an offline terminal, it's payout time. They'll use the opportunity to withdraw that sucker dry before it comes back online. And they'll call their buddies up and tell them to try the other ATMs in the neighborhood, and drain those too. Or if such a feat were possible, they'd just cut the network wire (with an axe or a chainsaw at the pole in the parking lot) and then empty it.
This is a different scenario than an offline cash register, where the machine can still scan barcodes and print receipts when it's offline, and you have a (semi-)trusted employee scanning the carton of milk and handling the change.
They should lose their contracts for failing to wipe the data off the hard drives.
They likely will as this is almost certainly a violation of ITAR regulations. Northrup Grumman does very little that is non-military.
They most certainly will not lose their contracts over this. They'll find a way to blame the lost data on some tiny sub-subcontractor that the subcontractor responsible for disposing of used equipment hired to wipe the drives, and they'll get fired. Or maybe they'll fire the person who kept the data on their hard drive instead of the network drive, and trot out the click-through policy that says "we told you we could fire you for violating this policy."
There's always a weasel-way for companies to get out of these situations by blaming someone for the failure.
I didn't say 'on the Internet' for a reason.
I don't know where you'd meet a woman in realspace, since I met my wife on-line. But that was 29 years ago, so that old trick probably won't work any more.
That's why you use a stolen phone. After you've sent your videos, you immediately THROW IT AWAY and steal another one for the next batch. You don't hang on to it for days on end or reuse it for dozens of news reports; that's a sure way to lead the authorities to you.
Just don't keep stealing them from the same person or even from the same place. And don't throw it away or abandon it in the same place, and especially not in front of security cameras. If you're in the midst of the mob, you can drop it at your feet after sending the data.
As a dissident, the better choice would probably be a stolen phone! Going to jail for stealing a phone will get you simple prison time and probably a beating or two. Going to jail for spying and sending videos to Western Agents could get you disappeared. Having an openmoko phone would be highly suspicious from a technology point of view (although it would probably be easy enough to hide stuff in from a bunch of police thugs.)
placebos should be preferred as they dont have side effects.
I'm pretty sure this is incorrect. Granted, they're not very harmful, but you could easily experience things like dry mouth, headaches, muscle aches, etc. Remember, your body is reacting as though it received medicine. If someone gives you a placebo and tells you it's a cold remedy, you will probably experience the same side effects you experience with Sudafed.
The prescribing doctor is the cause of the side effects: "Be sure to take these pills with lots of water and maybe a cracker or two, they're really powerful and give some people a bit of nausea."
It's the sales job that makes placebos work, and part of convincing people that it's effective is to add that "powerful" tag. And nobody would believe a perfect pill with no side effects exists, or we'd all be taking them every day.
Stay with it , its the people who who are longest in the job that become managers.
Hell, that's good enough reason to quit! Manager of a help desk means you have to take the calls of the screamers who escalate themselves above the first line monkeys, and you take the blame every time you're short staffed because Joe and Jane didn't show up 'cause they're hung-over again.
And don't forget that just because you think it's safe doesn't mean that it actually IS safe. Check out the BlueCoat proxy, which is a corporate web proxy/filter that also works on SSL connections (via man-in-the-middle attack.) All your company has to do is drop their own root certificate on your machine, and unless you're in the habit of checking the sites providing your signature, you may never spot it. (Fortunately Firefox displays the certificate's site name next to the padlock icon.) There's also nothing stopping a corporation from installing a key sniffer or remote observation software on their equipment, which includes your desktop.
Just in case you were thinking that you were "safe" blowing whistles on a darknet at work.
I guess the "Post Anonymously" box isn't going to help me now anyway.
Or: The sun's gotta shine on a dog's ass sometime.
Woo! Go Sun Devils!
I propose the aether is responsible.
I blame the thetans.
A relative was born with cerebral palsy which manifested itself as severe control problems, especially with her hands and upper body, including almost unrecognizable speech. She tried a mouse with a large wooden knob, and later a leather strap, but they were pretty frustrating as her control is so limited. Only close friends and family can understand her speech, so voice recognition has never been an option. But her feet are pretty good, so she's learned to manipulate a track-ball with her toe. It takes her a while, but she can get stuff done. ( I have to say being on line is one of the most liberating things that's ever happened to her. I'm glad she found a tool that works. )
Another relative suffered a stroke fifteen years ago, and she has very little use of her right side and mild aphasia since then. She learned to use her left hand, but complex or multitasking instructions are now beyond her. She needs a distraction-free environment in order to function well.
My point is that many disabilities are uncommon or unique. Some disabilities require a physical change to make the interface work -- it's not typically a problem you can solve in software. Others are environmental. So it's hard to find an off-the-shelf solution for any particular problem, as they're not economical to produce in quantity.
While I agree that it would up the ante for crap games from 90% to 99%, there would still be more novel games overall. They'd be harder to find, hiding amongst the crap games like "Goatse: Hunt for the Treasure", but word of mouth would spread them around quickly.
( Trust me, you do NOT want to go looking for that secret level. )
Bad apples stand out in every walk of life. The good, honest competent people (or at least the ones who aren't egregiously stupid) are almost invisible next to the loud and wrong idiots, who draw attention for being both loud and wrong.
I agree completely that teachers as a profession are maligned more often than is fair. I think much of that is due to their visibility to young people who aren't used to dealing with incompetent people in authority, and having their first taste of "hey, that guy's an idiot! I'm just a kid and I can see he's wrong!" That's a powerful memory maker for just about anyone, and it almost always happens with teachers first.
It only counts as self-diagnosis when one of your personalities is biopsying your brain tissue. Let us know how that works out for you.
While I completely agree that this is the best option, this is one of those cases that would screw the rest of us if it was decided on the basis of "OMG - think of the children!" instead of on its own legal merits.
What if the repair guy had found naked pictures of the guy's wife, and posted them on the Internet? Or posted pictures of him naked with his girlfriend, and his wife saw them? What if he found plans to tempt a Senator with a bribe? What if he gave those plans to his competing candidate, instead of the police?
Each of those cases may represent a different legal case, but they could all be "colored" by precedent set in this case.
That's why it's dangerous to think of this as simply "I'll never have child pr0n on my PC." The case isn't just about the content, but about how it was dealt with. I think the SCOTUS was wise to not take this case, and they just let the guy hang for the pr0n. If they had ruled fairly that this was an illegal search, the pornographer would have walked and they would have been ridiculed as "supporting the pornographers" and labeled "activists" by a bunch of morally bankrupt wingnuts, regardless of the correctness of their decision. I think they're wisely saving the "technician searches your PC" decision for a case with less 'radioactive' content.
It's good that you realize you may be stagnating, because you likely are. Since you are self-taught in programming, I'm sure you would benefit from experience with other developers. Code reviews and design reviews are real learning opportunities (at least when done right.) You'll also learn where your gaps in documentation and analytical skills are -- it's easy to write code to your own specs, because you know precisely what you meant. The real test is when other people code to your specs.
That said, however, you may find it hard to just drop a job and pick up another, especially in the current economy. Some people can, but you may have to make sacrifices (moving, commutes, paychecks, hours, etc.,)
And it's not to say that all experience is pleasant: you could easily land with another crappy developer or team, too. (Hopefully you've learned enough from this guy to spot and avoid another similar set of circumstances.) But you'll learn from it all.
Life is really too short to spend 50% of it at a job you hate. Good luck!
Don't worry about it. Stupid criminals can be shown a sign that says they're being videotaped, and that the video tape will be used as evidence against them in the case of a crime. They can be told in the morning that the video cameras are watching. They can be shown the TV monitor displaying what the camera shows. They can sign a document stating that they have been informed of the video equipment used to monitor their activities. They can even see the video camera domes above their heads.
And that afternoon, they commit a crime under the watchful eye of the very camera they were warned about.
We're talking about the dumbest of the dumb here. These are people caught in the pool filters of the gene pool, but haven't been removed yet. Don't worry, they will essentially catch themselves for us.
BTW, boycott the major labels, listen to indie music. By boycott I mean don't just not buy, don't even download or listen.
How do I avoid listening to major label music at work or in a grocery store?
You could try clapping your hands over your ears and loudly shouting "LA-LA-LA!" while you walk down the aisles of the grocery store. You'd probably benefit the other shoppers who would be also unable to hear the Muzak over your masking noise.
I'm not sure how you'd keep the music stopped once you've been committed into the asylum, however.
But why can't he be an evil genius? The world needs more evil geniuses so that we can get more super heroes.
Wow, I never thought of super-villainy from the supply and demand curve viewpoint. If each superhero kills or incarcerates one super villain every month, each super hero is going to go through a dozen evil geniuses annually. And they can't all be super-duper evil geniuses, because any super-duper evil genius will recognize that mortality rate right quick and is likely to make a different career choice, such as stock trading.
I think an associate's degree at age 11 is just about the right time for something horrible to happen that will corrupt him into turning evil. Perhaps there's a super-duper evil genius right now who is plotting to kidnap his mother to turn him into a revenge-motivated evildoer! Maybe the super-duper evil genius is seeking out dozens of these smart kids in advance, hoping to create enough evil geniuses to serve as cannon fodder for the future superheroes, and for them to serve as a distraction for when he puts his ultimate plan for world domination into motion.
What stuff? You mean the raw database? Theoretically, there are various layers of security here: firewalls to the outside, authentication to particular views on the inside where only data you Need To Know is available to you, and proper firewalls on each database server to limit access to the database port(s) and probably ssh.
It seems your theory is kind of flawed, because if their protection was indeed that good the thieves probably wouldn't have gotten the data they did.
I think the reality is they have a firewall, and probably overly simplistic authentication on the databases, and virtually nothing else. Consider an inept DBA running SQL Server 2005 who ties the SQL Server's SA account to the machine's administrator account. And add another inept system administrator who has a shared admin account across all the database servers, as well as some IIS servers and maybe some FTP servers as well. So the hacker worms his way to an admin account on ftp_serve_01.tmobile.com and ta-da! He's suddenly got admin rights to their data!
Never ascribe to ingenuity that which can be adequately explained by stupidity.
If I were an AT&T official and they contacted me? I'd absolutely be interested. I'd also be on the phone to internal corporate security and the FBI before I finished reading the email.
If this story is true, those are some mighty bold thieves. AT&T probably has more resources than anyone else on the planet for tracking down the originator of that communication. For that matter, AT&T are probably the ones the FBI contacts when they want to hunt down a bad guy, so you know there's a long relationship there, too.
Times may be tough, but various competing corporations often have informal and even friendly relationships with each other when it comes to Loss Prevention departments. They share info on thieves and threats, and despite outward animosity between two competing companies, their L.P. departments do tend to help each other out with situations like these. I know that's the case in retail, where organized crime investigations actually can have cooperation between companies like Walmart and Best Buy. There's definitely an "old boy's network" behind the scenes as these employees shift between companies and don't forget their old friends. It's a lot like the cop brotherhood (in part because many of the L.P. staffs are actually retired cops.) AT&T likely wants these guys caught almost as much as T-Mobile does.
it's freedom the same way crawling through a 16 inch drainage pipe from East Germany to West Germany is freedom.
This is the closest (but not over) to Godwinning a thread than I have ever seen in my life. Well done, and congratulations!
And why do you think Google is interested in preserving Firefox as an end goal? They are not a non-profit foundation. They are much more like Microsoft or Apple: they want to make money.
One potential way to make money is to control the internet content all the way through end-user delivery. It may enable some things that seem otherwise impossible: delivering protected copyrighted content, for example. If they offered a browser that wouldn't let you save YouTube streams, then maybe the RIAA would let them display music videos. Maybe book publishers would let them display Google Books along a Kindle model. Or maybe Google has a workable micro-payment system in place that depends on the browser not spoofing the for-pay site. Or maybe they just want to make sure that Google AdSense and google-analytics can't be blocked by the end users.
A "non-trustable" browser (like Firefox with all its Greasemonkey scripts and Noscript and AdBlock etc.) can't offer the rights-holders enough assurance that they can deliver their data without it being copied. Chrome may be the guarantee that lets them make money.
Before another DRM flamewar erupts, I'm not saying that Chrome can technically offer any more magic solutions than CSS or copy-protected diskettes or any of a thousand other failed DRM schemes. But like Apple's Fair Play, it might be "enough" protection to convince the copyright holders to distribute their content through Google's tubes.
Because of advanced forms of fraud (and because networks are much more reliable than the dialups of yestermillenia) ATMs no longer work if the network goes down. They shut themselves down. They don't hand out cash when they're offline, because they have no way of authenticating your PIN, your card, or your account.
If it were possible, criminal organizations would have people trying a bad card in a different ATM every hour of every day of every week. Once they "luck" into an offline terminal, it's payout time. They'll use the opportunity to withdraw that sucker dry before it comes back online. And they'll call their buddies up and tell them to try the other ATMs in the neighborhood, and drain those too. Or if such a feat were possible, they'd just cut the network wire (with an axe or a chainsaw at the pole in the parking lot) and then empty it.
This is a different scenario than an offline cash register, where the machine can still scan barcodes and print receipts when it's offline, and you have a (semi-)trusted employee scanning the carton of milk and handling the change.