Forgot your password?
typodupeerror

Comment: Re:Now this is what I call entertainment. (Score 1) 219

by rockiams (#42209789) Attached to: John McAfee Collapses At Guatemala Detention Center

There was an article in 2010(I think, maybe 2009) that Wired ran about McAfee and how he baited some Wired reporter that was trying to do a big expose on him. He made up outrageous claims of bribing the police and such. When I first saw these headlines a few weeks back, I immediately thought he had moved beyond one magazine and was baiting the whole world. I still haven't read anything that convinces me that this isn't a hoax(but I admit I haven't RTFA on any of them.) My google-fu is weak and I don't know where my dead tree versions of Wired are right now.

Comment: Re:Paying for a fix that should have in place? (Score 2) 132

by rockiams (#42106699) Attached to: Hotel Keycard Lock Hack Gets Real In Texas

I would argue that the muffler is not as important, more akin to the management of cards or the 'wow factor.' A car's main function is transportation, so if it fails that it almost can't impress anyone. So a lock can have several ancillary features but if it is easily defeated, it gets a fail in my book.

And I am not sure how you would measure a lock to get the 99.99% and if that number is even possible for a lock(Google 'myth 5 9s')

And I am happy with my hippie GNU friends...and I let MUNI drive me around, so I'm probably not impressing anyone who would be impressed by a car. I would love to drive a Tesla for a couple of days though.

Comment: Re:Paying for a fix that should have in place? (Score 1) 132

by rockiams (#42106181) Attached to: Hotel Keycard Lock Hack Gets Real In Texas

I don't think your car analogy is accurate. In this case I bought the BMW(and really a 325 impresses my friends? I need better friends!) to impress my friends, not to protect the platinum in my muffler. If someone steals my muffler, my friends should still be impressed by my status symbol, so long as it isn't running. (Unless my friends are Joe Dirt, and then that loud roar is badass, yeeehaawww!)

A lock on the other hand, was purchased for the sole purpose of denying entry to unauthorized people. It failed to do so.

So I guess a better car analogy would be I bought a BMW 750i to impress my friends, but since they are all hippie GNU users who shun material things, it failed to do so. I would have been better off buying a Tesla Motors car to appeal to their green side.

Oh wait, the car didn't fail, my friends failed to appreciate the Ultimate Driving Machine. Sorry, my car-analogy-fu is weak today.

Comment: Re:We don't use sudo? (Score 1) 592

by rockiams (#35207896) Attached to: Common Traits of the Veteran Unix Admin

Wow, did I touch a nerve there? I didn't run X on servers, and the only time the root password is typed is if you are at the console. Just because we didn't use sudo doesn't mean we didn't have our own system for access control and auditing.

And I have to agree with visualight, if you are spending 99% of your time as a regular user, then you are not a Unix admin, but more likely an app support/dev person who is in /etc/sudoers.

Either way, I thought the article was funny and was just having some fun with it.

Comment: Re:We don't use sudo? (Score 1) 592

by rockiams (#35207754) Attached to: Common Traits of the Veteran Unix Admin

I think what I didn't make clear is the fact that we had separate groups that ran the non-root services. With hundreds of systems and a small group of us that had root access(restricted by IP and ssh key-based auth, heavily monitored and any exception was emailed from central syslog, among other things) if we were logging into a server, it was to do something that needed root access. We weren't logging in to troubleshoot apache as root. Well, sometimes, but we had everything scripted so we wouldn't start things up with the wrong UID.

We didn't even have sudo installed on the really old systems and any su would trigger alerts.

I guess my original point was, as root I was aware of the loaded gun I was carrying, but that was my job. It seems that many of the admins in this thread may be of the small shop variety that are wearing more than just the # hat. That is fine too, and if you do have to wear different hats, then sudo is probably a great thing.

And really, lighten up kids, you too will be old and bearded someday and will get a kick out of arguing the merits of old school vs. new school. Hell, when I started security was an after thought and if you wanted to harden a system, you were considered a security nazi.

Comment: Re:We don't use sudo? (Score 1) 592

by rockiams (#35207646) Attached to: Common Traits of the Veteran Unix Admin

I didn't say that. There is more than one way to skin a cat. Everything that was ever done as root on the systems in question were logged. And I am not sure what you mean by separation of duties, but app support, dbas and root tasks are all performed by their own accounts and staff. If I needed to help a dba, I would sit with them and use their login.

Comment: Re:We don't use sudo? (Score 1, Redundant) 592

by rockiams (#35206268) Attached to: Common Traits of the Veteran Unix Admin

Yes. If it doesn't need to be run as root, then it is not my job. You need to grep a video directory for every instance of 'justin bieber"? Go ask someone who has nothing better to do and is thrilled to wield the power of grep. I will be busy mocking Winders admins and tossing them quarters.

Your own mileage may vary.

Working...