Wandering Thoughts archives


Keeping secrets as a system administrator

There are two sorts of secrets in the world: known secrets and unknown secrets.

A known secret is something that people already know exists; for example, your root password is a known secret. Keeping a known secret is simple: you just don't tell people your root password. You have to guard known secrets against inadvertent disclosure (it's always embarrassing to type your root password into the wrong window), but that's mostly it.

(I am ignoring the possibility of deliberate attacks against the secret.)

Unknown secrets are secrets that people do not know even exist. When you are keeping these, it is not sufficient to avoid disclosing the content of the secret; you must conceal the very existence of the secret. In short, to keep an unknown secret you must behave as if the secret doesn't exist. For example, if the unknown secret is a message in a private message system it is not sufficient to not disclose the contents; you had better not mention that the message even exists.

(This is especially the case because unknown secrets are usually the most sensitive sort of secrets that system administrators have to deal with or accidentally come to know.)

If you are trying to figure out if something is a known or an unknown secret, ask yourself if an outside person would know about the existence of the secret. If the answer is even 'probably not', then it is safer to assume that it is an unknown secret and behave appropriately.

(Getting good at keeping unknown secrets has uses outside of system administration, too; quite a lot of spoilers for books and movies and TV shows qualify.)

sysadmin/KeepingSecrets written at 22:41:56; Add Comment

The quote of the time interval, on XML

From an article by Henri Sivonen:

Draconian error handling creates an unstable equilibrium in Game Theory terms—it only lasts until one player breaks the rule. One non-Draconian XML5 implementation in a key client product and the Draconian XML ranks would break.

(Discovered through Mark Pilgrim, specifically his firehose.)

Applications to XHTML are left as an exercise for the reader.

links/DraconianXMLQuote written at 21:24:26; Add Comment

Page tools: See As Normal.
Login: Password:
Atom Syndication: Recent Pages, Recent Comments.

This dinky wiki is brought to you by the Insane Hackers Guild, Python sub-branch.