None of the Orange Book specs require you to have a root capability at all, but the higher levels require you not to have it. B1 still permits you to have root, and there are implementations that do.
Responding professionally to bad customer requests
on
DSL Installation Fail
·
· Score: 1
Maybe the neighbor did request the installation some time before the snowstorm started, or maybe not, or maybe this was a repair job because their service had died during the snowstorm. If the technician didn't want to do the job until the weather improves, he could either be professional about it and say "sorry, got to reschedule, weather's too bad for a new install", or at least be unprofessional in some reasonably professional way, like claiming "customer wasn't home" or "couldn't get access" or something. '
If you're doing an 8-hour work day, get full-sized reading glasses, and switch glasses when you're leaving your desk. Or you could try progressive lenses.
Twenty years ago, it was much easier to fix this problem for my supervisor, who was about 60 and constantly switching glasses. We were using the Sun NeWS windowing system, so we just told his screen to use a 25-point font, everything got bigger, and he was happy. On the other hand, today you can get a much bigger screen, and as long as you're not using Windows, it's not too hard to change font sizes.
This think cost a lot of money to build, but the operating costs aren't that high. Bill Gates is busy trying to cure malaria, and having his own particle accelerator would just go along with his Bond Villain image, but maybe Paul Allen would kick in some pocket change.
The most important part of the cost is "what other Real Science could the people who work on it be doing instead?" Would they be developing or researching things that are more important to the world than a new boson, such as more efficient solar cells, or would they be teaching undergrads, or developing military hardware that the world would be much better off without, or would they be working for Starbucks or Wall Street because there aren't any other good physics jobs around?
It's been a couple of decades since I messed with it much, so I don't remember if it was B2 or B3 that couldn't have root, but you could definitely still have root on a B1 system, and the AT&T System V MLS version did. Networking has become such an essential component of computer use that you'd need Red Book compliance, not just Orange Book, and during the 80s that was still Way Speculative Research. There were some limited-purpose systems that could comply with Red Book or Orange Book A1, but they didn't really provide user environments.
Of course, lots of the government procurements that wanted an Orange Book secured system also wanted Ada, and Posix-compliant with the latest Posix spec, and Posix Real-Time, and Specially NSA-Tweaked X.25, and the GOSIP ISO protocol stack, and it all had to be Commercial Off-The Shelf (so the government didn't have to pay for custom development costs, even though they were the only customer), and yes, NASA, I'm talking to you, Orange Book systems didn't really support networking in their certified configs yet, and messing with anything in the Trusted Computing Base required re-certification, and at best you could get two of these checklist features at once, and the only way this stuff ever got to be COTS was that component vendors would agree to buy these things from you so that you could sell the Feds boxes with their parts in them.
There are a number of different objectives people might have for splitting up superuser powers, and depending on what you're trying to accomplish, there are different kinds of solutions out there. For instance
You don't trust unwatched individuals acting alone with the power to do stuff and change logfiles to cover their tracks? - That sounds like what you're asking here? But is that what you really want?
You trust your individual superuser as a person, but don't trust his remote access environment not to be hacked, compromised by the cross-site-scripting-virus-wireless-keyboard-logger of the month? - You might be insufficiently paranoid, or you might have much more serious problems than you think?
You want multiple people to have sysadmin capabilities so you can get stuff done even if the main lead isn't around or it's night shift? That's what wheel group or equivalent is for.
Having One Super Root is too powerful, and you want to split up the different admin functions? There have been a bunch of Secure Unix projects, typically B2 or B3 Orange Book things funded by the NSA, which do that.
Root is more powerful than most admins need most of the time, so you'd like to be able to split up admin functions without giving everybody root. - Sometimes setuid and sudo are enough, and the traditional Unix approaches of having different admin user ids (lp/lpr, mail, etc.) worked relatively well but need a bit of help on TCP/IP permissions, and there have been various projects to build tools like that.
You really need to nail down your problems and objectives carefully before looking for a solution. Security can really improve your operations if it matches your goals, but it can also really interfere with work if it's preventing you from doing things you need, whether that's directly blocking appropriate actions or whether it's by making you use a Linux distribution that's inappropriate because it's the only one with your required security buzzwords all checked.
Yarrrr, ye should be using the right technology for the job!
Unfortunately, auto-darkening welding helmets wouldn't be fast enough to do the job; they're pretty good for arc-welders starting up, but a laser swinging across them is going to be pumping in the energy before the sensor has time to react.
As the other commenter said, I'm describing the ones in slasher films, and their boyfriends as well. They're usually the first ones to get killed, unless another character or two headed off to go skinnydipping, or maybe to steal some beer for the rest of the party...
You could start with a really stretchy hard-to-validate hypothesis, like "there are some non-physical beings hanging around this house who are the personalities of humans who were once living here and are now dead but still manage to influence the physical world", vs a null hypothesis of "uh, no" and try to find ways to measure the physical effects that would distinguish those two hypotheses, but I'd recommend not spending too much time building equipment for that.
Or you could go with a simpler hypothesis, like "I ain't afraid of no ghosts!" that you can find tools to measure something about. Maybe you'll find that you ain't afraid of ghosts, and that your friends are, and that creaky noises upstairs or bats in the attic or rats in the cellar sound to them like ghosts, and sound to you like loose shingles or a leaky steam radiator system.
Have you ever wondered why skeptics never find ghosts? It's because, basically, skeptics are annoying people and ghosts don't like to hang around them. Too much negativity, and not enough good-looking cheerleader girlfriends, and especially not enough of the dumb ones who say "let's leave the rest of the party in the well-lit living room and go make out in the abandoned upstairs wing of the house - we don't need to bring a flashlight."
If you want to get information about how Drug $A interacts with Drug $B, Google's pretty useless - you mostly get sites that want to sell you drugs and list $A and $B, or at best lists of medical papers, usually scraped by reformatters, which have some paper on $A and another paper on $B. (Of course, if you want information on how Drug $A interacts with Drug $$V, then you're totally out of luck:-)
I've given up on Google and use Wikipedia for any medical information.
All you young folks, thinking you've always had the technology to be Anonymous Cowards.... We spent the 90s fighting the Crypto Wars against Louis Freeh and the NSA, and while Clinton didn't start the FBI's quest for increased eavesdropping power, he didn't slow it down any, and the main reason you're allowed to use crypto today is that there was too much money between online banking and e-Commerce that really needed it. Bush and Cheney were really enthusiastic about it, and Bush's father liked the stuff too, and Ronnie Reagan didn't mind it when he was awake either, Gerald Ford was out playing golf, Carter cut back on the CIA a lot (so a lot of them went freelance until he was gone), and Nixon sure was no friend of civil liberties, especially when he could get J. Edgar to give him secrets about his enemies.
If you're not afraid, the politicians aren't doing their jobs well enough. And just because Bush/Cheney's party lost the 2006-2008 elections and we got the Democrats back doesn't mean that they've changed the policies any.
Shortly after the 9/11 attacks, some radio talking head asked a safety expert how to reduce your risk of getting killed, and she replied "wear your seatbelt and stop smoking." She was of course correct, though since I already wear my seatbelt and don't smoke tobacco, it didn't affect me much. I guess that was before I got hit by lightning, but after the first time I almost got hit by it before. (Hanging out at the tops of mountains affects your risks of that considerably, whether you're getting there by climbing them or taking the ski lift.)
If you mean airports where the TSA doesn't have jurisdiction or presence, it's pretty much limited to general-aviation airports, military air bases, and big stretches of dirt. If you mean a list of airports that don't have Naked Scanners, or that have the Terahertz radars instead of X-Ray scanners, there probably is a list of them, but it's a moving target (and so are you:-), so Your Microwavage May Vary.
I really like flying the small inter-island carriers in Hawaii - they tend to fly out of the commuter terminals at most of the airports, using 10-seater Cessnas that fly low, have a great view, and are small enough that the TSA doesn't mind if they crash, so you don't have to wait in the security lines or get X-rayed. You might have to help the pilot put your bags on the plane, and the one additional privacy invasion is that they need to know your weight, so they can balance the plane, which means fat people sit in the back.
The big difference between Israeli airport security and the TSA is that, for the most part, Israeli security is trying to prevent bombings and attacks, while the TSA's job is to intimidate the American public and make them feel dependent on big tough government to protect them from scary enemies. That doesn't mean that the Israelis aren't also trying to intimidate Arab citizens or that the TSA isn't also trying to stop bombs, but the primary objectives are different.
Slashdot Mirror
This paper said you might not need as many dots in step 2, so you get to PROFIT sooner!
Of course he should have done the job right. But this one looks over-the-top egregiously badly done, not just a regular-slacker bad job.
None of the Orange Book specs require you to have a root capability at all, but the higher levels require you not to have it. B1 still permits you to have root, and there are implementations that do.
Maybe the neighbor did request the installation some time before the snowstorm started, or maybe not, or maybe this was a repair job because their service had died during the snowstorm. If the technician didn't want to do the job until the weather improves, he could either be professional about it and say "sorry, got to reschedule, weather's too bad for a new install", or at least be unprofessional in some reasonably professional way, like claiming "customer wasn't home" or "couldn't get access" or something.
'
If you're doing an 8-hour work day, get full-sized reading glasses, and switch glasses when you're leaving your desk. Or you could try progressive lenses.
Twenty years ago, it was much easier to fix this problem for my supervisor, who was about 60 and constantly switching glasses. We were using the Sun NeWS windowing system, so we just told his screen to use a 25-point font, everything got bigger, and he was happy. On the other hand, today you can get a much bigger screen, and as long as you're not using Windows, it's not too hard to change font sizes.
I suppose those would be the opposite of what you need here - "No, that small print could be scary - let's refocus for distance!".
Thank you for making a humble pair of reading glasses so very, very happy!
This think cost a lot of money to build, but the operating costs aren't that high. Bill Gates is busy trying to cure malaria, and having his own particle accelerator would just go along with his Bond Villain image, but maybe Paul Allen would kick in some pocket change.
The most important part of the cost is "what other Real Science could the people who work on it be doing instead?" Would they be developing or researching things that are more important to the world than a new boson, such as more efficient solar cells, or would they be teaching undergrads, or developing military hardware that the world would be much better off without, or would they be working for Starbucks or Wall Street because there aren't any other good physics jobs around?
It's been a couple of decades since I messed with it much, so I don't remember if it was B2 or B3 that couldn't have root, but you could definitely still have root on a B1 system, and the AT&T System V MLS version did. Networking has become such an essential component of computer use that you'd need Red Book compliance, not just Orange Book, and during the 80s that was still Way Speculative Research. There were some limited-purpose systems that could comply with Red Book or Orange Book A1, but they didn't really provide user environments.
Of course, lots of the government procurements that wanted an Orange Book secured system also wanted Ada, and Posix-compliant with the latest Posix spec, and Posix Real-Time, and Specially NSA-Tweaked X.25, and the GOSIP ISO protocol stack, and it all had to be Commercial Off-The Shelf (so the government didn't have to pay for custom development costs, even though they were the only customer), and yes, NASA, I'm talking to you, Orange Book systems didn't really support networking in their certified configs yet, and messing with anything in the Trusted Computing Base required re-certification, and at best you could get two of these checklist features at once, and the only way this stuff ever got to be COTS was that component vendors would agree to buy these things from you so that you could sell the Feds boxes with their parts in them.
Sorry, but the meme was just sitting there....
There are a number of different objectives people might have for splitting up superuser powers, and depending on what you're trying to accomplish, there are different kinds of solutions out there. For instance
You really need to nail down your problems and objectives carefully before looking for a solution. Security can really improve your operations if it matches your goals, but it can also really interfere with work if it's preventing you from doing things you need, whether that's directly blocking appropriate actions or whether it's by making you use a Linux distribution that's inappropriate because it's the only one with your required security buzzwords all checked.
So Dark (Middle?) Ages tapestries are illustrating Cartoon Physics?
As the song says, being a pirate is all fun and games till somebody loses an eye...
Yarrrr, ye should be using the right technology for the job!
Unfortunately, auto-darkening welding helmets wouldn't be fast enough to do the job; they're pretty good for arc-welders starting up, but a laser swinging across them is going to be pumping in the energy before the sensor has time to react.
Wikipedia articles on drugs standardly have pointers to the Usually Reliable Sources - for instance, go look at Wikipedia article on Cipro
As the other commenter said, I'm describing the ones in slasher films, and their boyfriends as well. They're usually the first ones to get killed, unless another character or two headed off to go skinnydipping, or maybe to steal some beer for the rest of the party...
... we've got some handbags that don't have much spam in them....
You could start with a really stretchy hard-to-validate hypothesis, like "there are some non-physical beings hanging around this house who are the personalities of humans who were once living here and are now dead but still manage to influence the physical world", vs a null hypothesis of "uh, no" and try to find ways to measure the physical effects that would distinguish those two hypotheses, but I'd recommend not spending too much time building equipment for that.
Or you could go with a simpler hypothesis, like "I ain't afraid of no ghosts!" that you can find tools to measure something about. Maybe you'll find that you ain't afraid of ghosts, and that your friends are, and that creaky noises upstairs or bats in the attic or rats in the cellar sound to them like ghosts, and sound to you like loose shingles or a leaky steam radiator system.
Have you ever wondered why skeptics never find ghosts? It's because, basically, skeptics are annoying people and ghosts don't like to hang around them. Too much negativity, and not enough good-looking cheerleader girlfriends, and especially not enough of the dumb ones who say "let's leave the rest of the party in the well-lit living room and go make out in the abandoned upstairs wing of the house - we don't need to bring a flashlight."
Or should it be .su, like it was back when the original ASCII IBM Christmas Tree hack came out?
In Soviet Russia, Wiki Leaks You!
If you want to get information about how Drug $A interacts with Drug $B, Google's pretty useless - you mostly get sites that want to sell you drugs and list $A and $B, or at best lists of medical papers, usually scraped by reformatters, which have some paper on $A and another paper on $B. (Of course, if you want information on how Drug $A interacts with Drug $$V, then you're totally out of luck :-)
I've given up on Google and use Wikipedia for any medical information.
All you young folks, thinking you've always had the technology to be Anonymous Cowards.... We spent the 90s fighting the Crypto Wars against Louis Freeh and the NSA, and while Clinton didn't start the FBI's quest for increased eavesdropping power, he didn't slow it down any, and the main reason you're allowed to use crypto today is that there was too much money between online banking and e-Commerce that really needed it. Bush and Cheney were really enthusiastic about it, and Bush's father liked the stuff too, and Ronnie Reagan didn't mind it when he was awake either, Gerald Ford was out playing golf, Carter cut back on the CIA a lot (so a lot of them went freelance until he was gone), and Nixon sure was no friend of civil liberties, especially when he could get J. Edgar to give him secrets about his enemies.
If you're not afraid, the politicians aren't doing their jobs well enough. And just because Bush/Cheney's party lost the 2006-2008 elections and we got the Democrats back doesn't mean that they've changed the policies any.
Shortly after the 9/11 attacks, some radio talking head asked a safety expert how to reduce your risk of getting killed, and she replied "wear your seatbelt and stop smoking." She was of course correct, though since I already wear my seatbelt and don't smoke tobacco, it didn't affect me much. I guess that was before I got hit by lightning, but after the first time I almost got hit by it before. (Hanging out at the tops of mountains affects your risks of that considerably, whether you're getting there by climbing them or taking the ski lift.)
If you mean airports where the TSA doesn't have jurisdiction or presence, it's pretty much limited to general-aviation airports, military air bases, and big stretches of dirt. If you mean a list of airports that don't have Naked Scanners, or that have the Terahertz radars instead of X-Ray scanners, there probably is a list of them, but it's a moving target (and so are you :-), so Your Microwavage May Vary.
I really like flying the small inter-island carriers in Hawaii - they tend to fly out of the commuter terminals at most of the airports, using 10-seater Cessnas that fly low, have a great view, and are small enough that the TSA doesn't mind if they crash, so you don't have to wait in the security lines or get X-rayed. You might have to help the pilot put your bags on the plane, and the one additional privacy invasion is that they need to know your weight, so they can balance the plane, which means fat people sit in the back.
The big difference between Israeli airport security and the TSA is that, for the most part, Israeli security is trying to prevent bombings and attacks, while the TSA's job is to intimidate the American public and make them feel dependent on big tough government to protect them from scary enemies. That doesn't mean that the Israelis aren't also trying to intimidate Arab citizens or that the TSA isn't also trying to stop bombs, but the primary objectives are different.