If you *really* want the root passwords to my lab (not company) then sure, all you have to do is break into a secure building, go to my boss's boss's office (4th floor SE corner) break the lock on the strongbox, get the envelope, and open it. Then you need physical access to the lab which is a second secure room, then you can access the servers.
Or:
You could just break into the lab and steal the HDDs out of the servers instead...
Point is, this is simply the best method to do this sort of thing where I work. I would think there are better ways, but this is functional, and everyone involved can understand it. My boss's boss know the data in the envelope is gibberish to him. He also knows my replacement will be able to use it to recover from anything that happens to me. -nB
True enough. The way we do it: We have 5 USB tokens. To override a root login requires 3 of the 5 keys. Done deal. In addition, I have a sealed envelope. My boss's boss has it locked in his desk. If I go AWOL all he as to do is open it and he's golden, keys to the castle are in there. I take the old one and replace it every 90 days.
Point is that if an admin wants to be a dick there is little you can do to stop them, however, an admin refusing to give out keys to anyone but pre-authorized people is admirable, not criminal. In the same boat I've done similar, but fortunately for me my boss had my back, rather than knifing it.
you've obviously never dropped your wallet then. I have. I'd gladly pay $200 cash in exchange for all the time spent straightening out my finances. I would come out ahead big time (Vs. lost income from normal hourly pay where I work).
I use a debit only card for ATM and a Low limit Visa for internet/day to day purchases ($1K). I have another account that can charge an obscene amount of money, but I try not to use that for anything, and don't carry the card with me as a day to day thing. Worst case scenario is I lose $400 cash from the ATM (daily limit) before I can notify the bank to freeze my account. The credit card purchases are not my problem beyond $50, and if they push the issue I simply refuse to pay;)
I've refused promotions specifically so I stay hourly. I am a realist in that I know this places me lower on the pecking order politically and my ideas are often not carried with the same weight as an exempt employees ideas. The good thing is that my skillset is *always* in demand in my business group, so I'm always busy, get overtime, and for teh last three years running have been paid more than the engineers due to the OT. -nB
As I like to tell people when they interrupt me, it takes about 15 minutes to get back into a task.
Work on reducing this so it takes less time.
It may not be possible to reduce this number much further. Frankly it can take me anywhere from 10 to 40 min to get back into the zone when I get yanked out abruptly. There have been times I've been in the middle of combo debug existing code/adding new code* and basically had to revert the last hour's worth of stuff because I was interrupted and lost my train of thought badly enough to have to start over. If I'm on a deadline and in the zone, I've learned to be an asshole. The only response I'll give is either a finger pointing up (index not middle), meaning wait a sec I'll be with you eventually, or a hand shoeing you away. The latter got me a meeting with management when someone was offended but upon explaining the loss of concentration causes a severe lag of resumption of work (and some wiki et. al. backing this up) there was no repercussions. -nB
* yes, a bad idea, but that's the breaks when it is test code for a new hardware platform, fix the old code to work on the new platform, while also accommodating new [widget].
or you can actually get data off the PS2 keyboard port if you really need to. you can send two bits with parity per transaction just by usage of the caps/num/scroll lock LEDs.
Might be a bit slow, but certainly is an interesting sideband attack...
hopefully that is in jest. In case it wasn't: the fabrication technology required balanced wafers for chemical deposition (spin deposition). If you had odd shaped wafers you would have to come up with an amazing new process. Also, your machines are big enough already, I don't think they want to make bigger machines. Finally, 300mm wafers look to be the largest doable with Si, else they start to break under their own weight. Same reason GaAs tech hasn't gone to 200mm (not sure if it even is at 100mm honestly). -nB
there is also the possibility of using a DC motor to turn an AC generator... That's how I do it (small scale though. Methinks there are better ways for larger scale operations).
My automatic has two fancy buttons. (mind you I enjoy my stick too). First button retards the gear shifts to be near the higher end of the RPM range (awesome for uphill driving and for tow/haul/race(ish) driving). The second button turns off all the "fuel saving options" which is helpful for downhill as it keeps the trans out of over-drive, and lets me downshift as needed.
To soft start on Ice I drop the gearbox to "2" and is starts in 2nd. -nB
or simpler, lift the targets prints off a cd/dvd/glass/etc. sand your fingerprints down, build target's onto your fingers with the correct materials...
Heck mythbusters did that and beat (nearly?) all the detectors. Adding pulseOx means you'll need to make the sub prints out of an animal fat gelatin rather than plastic. -nB
I don't know if it is websense... Block random shit though. one of my mates was looking at a webcomic series and one of the 6 pages was blocked. As to the DNS name, no surprise there, we run our own DNS servers, likely it does a lookup on the server and uses the name for the blocklist. -nB
depending on the state the developer is sued in/resides in he can file a SLAPP motion. This allows a judge to consider the merit of the case pre-trial and either dismiss or allow the case to go forward. If the case goes forward the fact that the SLAPP was not upheld is not permissible as evidence.
It's a powerful tool for the little guy and was developed for just this reason. Also, some states allow for a "SLAPP-back" provision thus he may get some income from this. -nB
Slashdot Mirror
"rainbow keys"
Yes there is a commercial system.
If you *really* want the root passwords to my lab (not company) then sure, all you have to do is break into a secure building, go to my boss's boss's office (4th floor SE corner) break the lock on the strongbox, get the envelope, and open it.
Then you need physical access to the lab which is a second secure room, then you can access the servers.
Or:
You could just break into the lab and steal the HDDs out of the servers instead...
Just sayin...
Fundamentally, yes.
Point is, this is simply the best method to do this sort of thing where I work. I would think there are better ways, but this is functional, and everyone involved can understand it. My boss's boss know the data in the envelope is gibberish to him. He also knows my replacement will be able to use it to recover from anything that happens to me.
-nB
True enough.
The way we do it:
We have 5 USB tokens. To override a root login requires 3 of the 5 keys. Done deal.
In addition, I have a sealed envelope. My boss's boss has it locked in his desk. If I go AWOL all he as to do is open it and he's golden, keys to the castle are in there. I take the old one and replace it every 90 days.
Point is that if an admin wants to be a dick there is little you can do to stop them, however, an admin refusing to give out keys to anyone but pre-authorized people is admirable, not criminal. In the same boat I've done similar, but fortunately for me my boss had my back, rather than knifing it.
you've obviously never dropped your wallet then.
I have. I'd gladly pay $200 cash in exchange for all the time spent straightening out my finances.
I would come out ahead big time (Vs. lost income from normal hourly pay where I work).
I use a debit only card for ATM and a Low limit Visa for internet/day to day purchases ($1K). I have another account that can charge an obscene amount of money, but I try not to use that for anything, and don't carry the card with me as a day to day thing. ;)
Worst case scenario is I lose $400 cash from the ATM (daily limit) before I can notify the bank to freeze my account. The credit card purchases are not my problem beyond $50, and if they push the issue I simply refuse to pay
-nB
good idea, I'm on it...
I've refused promotions specifically so I stay hourly. I am a realist in that I know this places me lower on the pecking order politically and my ideas are often not carried with the same weight as an exempt employees ideas. The good thing is that my skillset is *always* in demand in my business group, so I'm always busy, get overtime, and for teh last three years running have been paid more than the engineers due to the OT.
-nB
As I like to tell people when they interrupt me, it takes about 15 minutes to get back into a task.
Work on reducing this so it takes less time.
It may not be possible to reduce this number much further. Frankly it can take me anywhere from 10 to 40 min to get back into the zone when I get yanked out abruptly. There have been times I've been in the middle of combo debug existing code/adding new code* and basically had to revert the last hour's worth of stuff because I was interrupted and lost my train of thought badly enough to have to start over.
If I'm on a deadline and in the zone, I've learned to be an asshole. The only response I'll give is either a finger pointing up (index not middle), meaning wait a sec I'll be with you eventually, or a hand shoeing you away. The latter got me a meeting with management when someone was offended but upon explaining the loss of concentration causes a severe lag of resumption of work (and some wiki et. al. backing this up) there was no repercussions.
-nB
* yes, a bad idea, but that's the breaks when it is test code for a new hardware platform, fix the old code to work on the new platform, while also accommodating new [widget].
no it wouldn't.
What it would have done is pop the power supply fuse for that unit though.
-nB
or you can actually get data off the PS2 keyboard port if you really need to. you can send two bits with parity per transaction just by usage of the caps/num/scroll lock LEDs.
Might be a bit slow, but certainly is an interesting sideband attack...
tape solar cells to the sunflower?
hopefully that is in jest.
In case it wasn't:
the fabrication technology required balanced wafers for chemical deposition (spin deposition).
If you had odd shaped wafers you would have to come up with an amazing new process. Also, your machines are big enough already, I don't think they want to make bigger machines. Finally, 300mm wafers look to be the largest doable with Si, else they start to break under their own weight. Same reason GaAs tech hasn't gone to 200mm (not sure if it even is at 100mm honestly).
-nB
there is also the possibility of using a DC motor to turn an AC generator...
That's how I do it (small scale though. Methinks there are better ways for larger scale operations).
My automatic has two fancy buttons.
(mind you I enjoy my stick too).
First button retards the gear shifts to be near the higher end of the RPM range (awesome for uphill driving and for tow/haul/race(ish) driving).
The second button turns off all the "fuel saving options" which is helpful for downhill as it keeps the trans out of over-drive, and lets me downshift as needed.
To soft start on Ice I drop the gearbox to "2" and is starts in 2nd.
-nB
Well played. /. groupthink troll.
Seems to be a decent in-line with April 1 / poke fun at
I liked it.
-nB
Wait...
SCO is on the uptick?
I hereby resort to ad-hominem attacks:
you are a purple puke pointed on puce pansies.
So there!
or simpler, lift the targets prints off a cd/dvd/glass/etc.
sand your fingerprints down, build target's onto your fingers with the correct materials...
Heck mythbusters did that and beat (nearly?) all the detectors.
Adding pulseOx means you'll need to make the sub prints out of an animal fat gelatin rather than plastic.
-nB
The fact that one can argue about it means it is too damn complex.
deff NSFW
Restricted Category: Adult/Mature Content;Violence/Hate/Racism;Extreme
that's my proxy's hit.
IANAL /sticks tongue out
but, yes...
[/hands over pedant card]
damn.
you're right...
I don't know if it is websense...
Block random shit though.
one of my mates was looking at a webcomic series and one of the 6 pages was blocked.
As to the DNS name, no surprise there, we run our own DNS servers, likely it does a lookup on the server and uses the name for the blocklist.
-nB
Strategic Lawsuit Against Public Participation
depending on the state the developer is sued in/resides in he can file a SLAPP motion. This allows a judge to consider the merit of the case pre-trial and either dismiss or allow the case to go forward. If the case goes forward the fact that the SLAPP was not upheld is not permissible as evidence.
It's a powerful tool for the little guy and was developed for just this reason. Also, some states allow for a "SLAPP-back" provision thus he may get some income from this.
-nB