Honestly, if an attacker has shell access you’re toast regardless. I know you shouldn’t be able to escalate privileges, but better to never let them on the machine.
Most security in industry only holds because employees have no interest in attacking, or knowledge how to attack, their employer.
Don’t need specifically SU by my understanding. Just any suid executable.
I believe Codeberg also has import mechanisms for all the bits alongside the git repo as well. Issues, releases and all that kind of stuff.
It was very odd at my company. We were a Google Workspace company. Gmail, Meet, Drive, etc with our own servers for messaging, gitlab and some other things.
Sure being Google based isn’t great either, but generally people were fine with it. Then the C suite said we were moving to Microsoft. Lots and lots of complaining, asking for justification, but no reason was given (not even cost). Today people are still cursing teams 18months later. We’re not in control of our own data (things get deleted every time somebody leaves, and permissions are generally a mess).
Interesting, because I heard recent reports of huge amounts of inventory and large upfront manufacturing costs painting a picture of a company with extremely large amounts of debt to service. Some likening it to the Evergrande property company.
I doubt it’s on that scale, but I could easily believe BYD is another hyper accelerated company with shaky fundamentals.
I see this kind of reaction a bit, but the fact is if you win on one topic you have a foundation to argue other topics.
It’s a Trojan horse issue on all ownership rights and right to repair issues.
Armstrong and Miller, for those that were wondering.
Whoops. I was mistaken. It’s Monty Python.
Oh they did lie, but not about America. They lied about Iran.
A response I gave elsewhere in this thread.
This authority will provide you with tokens indicating you are 18+ (or whatever age verfication you may need) These tokens are stored locally, and contain no identifying information other than a simple “is this guy 18+?”
So they’re reusable? One token can be used for multiple age checks, right?
If not, then think about what that means.
- The token gets sent back to the authority for revocation.
- The token is authorised by the central authority as still valid.
- The token is uniquely identifiable
- The central authority knows who it issued each token for
- The central authority knows who has asked it the verify age.
Sure, the company you’re purchasing from may have no new information, but the central authority now has everything it needs to know:
- How often you buy tobacco, alcohol or medications
- What discussion boards you are a member of
- Have you purchased anything age restricted from any store (e.g. propane from a DIY store)
Your step 4 will make the token reusable, or at least reusable within a time frame. If a token can only be used once there has to be some information flow back to a central approval authority.
They already know how often you do all the things you have to be over a certain age to do?
This authority will provide you with tokens indicating you are 18+ (or whatever age verfication you may need) These tokens are stored locally, and contain no identifying information other than a simple “is this guy 18+?”
So they’re reusable? One token can be used for multiple age checks, right?
If not, then think about what that means.
Sure, the company you’re purchasing from may have no new information, but the central authority now has everything it needs to know:
…and they don’t do it unless you look like you might be underage.
I think I would question the reverse. I don’t think I could get my work done if I had to use something else. Maybe MacOS would work…maybe.
I’m always getting powers of ten wrong.
Regardless 500 workers Vs one CFO?
That would include the CFO too, right?
Alternative viewpoint. You could have retained 5,000 employees.
Can somebody explain peertube for me? It sounds like it should be a federated video service, but either the federation doesn’t work very well or there’s nothing on it.
Forget Norway!