I don’t have data to support it, but I’d imagine that the job role within the military can make a big difference. Were you an officer, with a college degree, doing a lot of IT work and never deployed? You’re probably gonna be fine.
Were you an enlisted undez who scraped rust, or were deployed and suffering from PTSD? It’s gonna be a much harder time.
Because it’s your computer
It likely depends on the courthouse, but generally speaking you’ll show up, sign in, someone will give a little talk about how things work, and then you’ll wait in a waiting room for a few hours while various names are called. Then you’ll go into the court room and the actual jurors will get selected from the pool. They’ll ask some questions and depending on the answer some people will get removed (having a family member who’s a police officer is pretty common).
If you’re not selected, you’ll probably go back to the waiting room to see if you get pulled for another case. If you are, you’ll sit and listen to the details of the case and eventually make a determination. Depending on the case/jurisdiction, you might also be a “backup juror” where you’ll sit through the entirety of the case, but won’t actually be part of the deliberation at the end unless another juror had to drop out for some reason.
I ended up getting a murder trial, which was pretty interesting. Overall wasn’t a horrible experience, but definitely glad I brought a Steam Deck while I was waiting.
That implies management is held accountable
Just curious, why aren’t you vegan if you consider it morally bankrupt to be complicit in the meat industry?
Bear in mind, with this liberal interpretation, any time you access a website, that is also consuming someone’s labor and if you don’t have a subscription to it, it is unpaid.
Ah, gotcha, I was thinking more in terms of software attacks than hardware, and that some vulnerability would come up at some point for them to get root access, at which point I think they’d be able to get the key one way or another. I’d imagine it also depends on how locked down the system can be based on the nature of their duties; arbitrary internet access makes shipping it off somewhere a bit easier. Another consideration would be that the drive could also be imaged, and if the key were ever recovered at a later date through whatever method/mistake/etc. the entirety of the data could be recovered.
But, yeah, definitely agree that that’s all moving well outside the bounds of disgruntled/opportunistic employee and more into the persistent adversary realm.
Fundamentally, once someone has some of the data, they have that data, and you can make no guarantees to remove it. The main question you need to ask is whether or not you’re okay with limiting it to the data they’ve already seen, and what level of technical expertise they need to have to keep the data.
Making some assumptions for what’s acceptable as a possibility, and how much you want to invest, I’d recommend having the data on a network-mapped share, and put a daily enforced quota for their access to it. Any data they accessed (presumably as part of their normal duties) is their’s, and is “gone.” But if you remove their access, they can’t get any new data they didn’t touch before, and if they were to try and hoover up all the data at some point to copy it off, they’d hit their quota and lose access for a bit (and potentially send you an alert as well). This wouldn’t prevent them from slowly sucking out the data day after day.
If they only need to touch a small fraction of the customer data, and particularly if the sensitivity of the data goes down over time (data from a year ago is less sensitive than data from a day ago) this might be a decent solution. If they need to touch a large portion of the data, this isn’t as useful.
Edit: another nice bit is that you could log on the network share (at your location) which of the customer data they’re accessing and when. If you ever want to audit, and see them accessing things they don’t need, you can take action.
I think the next best solution is the VDI one, where you run a compute at your location, and they have to remote into it. If they screen capture, they’ll still save off whatever data they access, and if they have poor, or inconsistent, connection up your network it’ll affect their ability to do their job (and depending how far away they are it might just be super annoying dealing with the lag). On top of that, it’s dependent on how locked-down they need to be to do their job. If they need general Internet access, they could always attempt to upload the data somewhere else for them to pull it. If your corporate network has monitoring to catch that, you might be okay, but otherwise I think it’s a lot of downside with a fairly easy way to circumvent.
I’m not the most up to speed on TPM’s, but does it have the capability to directly do network access in order to pull the key? Otherwise, you’re going to need the regular OS to get it to the TPM somehow, in which case that’s the weak link to pull the key instead of ripping it from the TPM itself.
And once they have the key once, how do you enforce them having to re-request it? Is there a reason that that point they couldn’t just unplug from the Internet (if even necessary) and copy the entirety of that drive/partition somewhere else?
I’m continually shocked by how often I learn of some structural systemic issue, pull the thread to see where it started and- oh, surprise, it was once again Reagan.
Also made the switch not too long ago, only using Manjaro. Steam’s proton had gotten extremely good at playing Windows games, so there’s a good chance that it could run your old strategy game.
You might already have this on your set-up, but having wine auto-launch for Windows executables has been fantastic. I regularly pull and run Windows executables without really giving it a second thought, and so far it’s generally “just worked.”
I think it’s used more often in computer science, but the difference between contiguous and continuous. Continuous means “without end” and contiguous means “without break.”
Gas-filler. There’s a couple states in the US where you aren’t allowed to pump your own gas, someone else has to do it for you, and you’re expected to then tip them.
The job is essentially getting me to pay to be inconvenienced. I’d prefer to pay to let me pump my own gas.
Then I would steer away from arguments which are more debatable and stick to ones that are more robust and focus on the present and future than the past, and avoid anything that can get mired in debate. I’d focus on what the specific problem is (we will have fewer artists due to competition with AI) why it’s a problem (cultural stagnation, lack of new inspiration for new ideas) and why alternative solutions to regulation wouldn’t work (would socializing artistic fields work as they’d no longer be subject to market forces).
I’ve heard the sentiment that change and convenience are killing society before, and I’m sure I’ll hear it again. I prefer to shop online. I get no sense of community from stores where every interaction has a hanging financial incentive around it, I get it from local organized runs, other frequent visitors of the dog park, etc. To me, that line of reasoning feels almost like lamenting how good the pipes in your house are, because you don’t need to call a plumber and get to interact with them.
Shopping online gives me more options, more reviews, easier ways to look up additional technical details without feeling weird taking space in an aisle while researching on my phone. It’s also more efficient in terms of total driving; one person making deliveries for everyone in a neighborhood requires less total driving than all those people making individual trips to a store. And it frees up more time for me to do things I actually want with the people I enjoy.
I’m always reminded of https://youtu.be/M6dWG18HnOo