What options are available to a Portable Hole owner?

I am a new DM, trying to understand the magic of the Portable Hole. I’ve read through as many previous posts on Portable Hole shenanigans as I could, but none seem to answer my questions. One of my players has managed to find a Portable Hole, thanks to the random loot tables. He’s familiar with them due to having played earlier versions of D&D. I, having never played these versions, am not as familiar. We find ourselves at odds on just how this item works. In order to keep this post short, I won’t post my interpretation of the rules, though suffice to say I disagree with the following.

  1. The Portable Hole can be opened by two people, holding it open like a sheet.

  2. If even the smallest portion of the cloth is opened, the portal is opened and the character can reach into the extra dimensional space.

  3. The Portable Hole can be thrown upwards, and unfold on its way back down, therefore opening the portal.

Do the rules shed any light on these complicated questions?

Database design – model a ‘Company’ with ‘Owner’, ‘Partner’, ‘Employee’

I’m working on an app that has mainly two entities: Company and User. A User can be an employee, owner, or a partner.

My current approach of modelling this is: enter image description here

Capacity is enum with possible values: employee, owner, partner

Someone got me confused suggesting I should have three separate tables for each of these capacities, which I don’t think is right.

I’m terribly unsure whether the capacity could grow to more in future.

Should I create another capacity table and reference it in Personnel as a foreign key, in case we wish to add more capacity? Would that be a scalable (and right) approach?

Thank you.

Can I safely sell a used keyboard without risk of new owner recovering previous inputs?

As far as of my knowledge goes, keyboard don’t store keystrokes in their memory by default (excluding those bundled with keyloggers). The thing that comes to my mind though is that some keyboards do have some built-in memory for storing user’s preferences (e.g. gaming keyboards). Can this be somehow reprogrammed to store other data than just LEDs color combo?

Can I sell my keyboard without worrying that new owner might recover previous input in some way?

Cheers, Dominic

Creating a Fortress that Allows Owner to Scry, but Blocks Others

I’m a GM designing the remote fortress of an ancient-but-still-living archmage (>=20th level?). The archmage lives in society at present, and only returns to his fortress a few times per year, or as needed, via a permanent teleportation circle.

Previously, the archmage hid in this fortress for centuries to escape persecution from…well…pretty much everyone, so the fortress needs to be protected against even high-level divination magic. For this reason, I plan to line the fortress with a layer of lead and have some permanent spells like Mage’s Private Sanctum, Nondetection, and similar, to prevent most/all divination magic.

At the same time, because the archmage has begun living in society again (in disguise), it makes sense that he would place some kind of alarm that would warn him, even at great distances, of intruders. Furthermore, it makes sense that he’d have a sort of permanent scrying system set up so that he alone could observe what’s going on in his fortress.

(Note: The archmage’s INT score is way above my own, so I figured I’d do the best I can by crowdsourcing…)

My Question

  • Is there any rules-as-written avenue for the archmage to simultaneously prevent others from successfully using divination spells on his fortress but also permit divination spells of his own?
    • If so, how could that be done?
    • If not, what might be the closest thing to it?

Staff of the Python: Can the owner communicate with the snake?

My character just got a Staff of the Python. He has been using his familiar (owl) and a friendly pseudodragon as a little army. I’m thinking of using the snake as an ally as well–but there’s no description of how much the snake can communicate with the player, if it can at all. Does anyone have any idea of guidelines for this?

From the item description:

You can use an action to speak this staff’s command word and throw the staff on the ground within 10 feet of you. The staff becomes a giant constrictor snake under your control and acts on its own initiative count. By using a bonus action to speak the command word again, you return the staff to its normal form in a space formerly occupied by the snake.

On your turn, you can mentally command the snake if it is within 60 feet of you and you aren’t incapacitated. You decide what action the snake takes and where it moves during its next turn, or you can issue it a general command, such as to attack your enemies or guard a location.

If the snake is reduced to 0 hit points, it dies and reverts to its staff form. The staff then shatters and is destroyed. If the snake reverts to staff form before losing all its hit points, it regains all of them.

It doesn’t really mention any communication, other than issuing general commands. Can it keep watch overnight, if I tell it to wake me up if it sees any enemies? Can I have it scout ahead, as long as it’s within 60 feet?

We’re deleting stale AD accounts for a company but owner wants to see the network files of AD users before deciding which accts to delete

We are deleting stale AD accounts for the companies we work for.

I contacted the owner of a particular company to help us determine which AD accounts we can delete. He said he’d first like to see what files the deletion candidates have stored on the network to help decide which accounts are OK to delete.

We have a domain admin account. Is there a way to access AD User files? Is there a PowerShell command (or GUI app) to list the files of each AD user in a clean/presentable format that we could present to the owner?

I think he’s only really concerned with the contents of each user’s Home directories (the directories containing the Documents, Music etc. folders) — and not network shares or shared folders users may happen to have access to — because the Home directories are the only directories risking deletion as a result of deleting their accounts, right?

Dockerfile – What user should be the owner for a mount point?

In the docker-compose file, below is the volumes instruction for builder service:

builder:   build: ../../   dockerfile: docker/dev/Dockerfile   volumes:     - ../../target:/wheelhouse   volumes_from:     - cache   entrypoint: "entrypoint.sh"   command: ["pip", "wheel", "-v", "--no-index", "-f /build", "."] 

But, the mountpoint wheelhouse is being created with below permissions within container:

  drwxr-xr-x   2 root   root    4096 Oct 23 15:06 wheelhouse   drwxr-xr-x   4 root   root    4096 Oct 23 15:13 application   drwxr-xr-x   2 root   root    4096 Oct 19 12:13 build 

target folder on docker host has below permissions:

 drwxr-xr-x 2 165536 165536    4096 Oct 23 09:06 target 

As per CIS rules, root is not a recommended owner within container :


root being a owner within container is a securtiy breach to get access to root name space.

As per CIS, which user is recommended owner of mount points? How to set this user?

nautilus/nemo/other file manager – suggestions for more accessible GUI-based owner management?


Short version

TL;DR – When running nemo/nautilus with elevated privileges*, there are a TON of users/groups on the permissions tab… they’re all jammed in non-searchable drop-downs that don’t have any hotkey support. Looking for tweaks/alternate file managers/chmod gui-wrappers so I can change ownership from GUI without the accessibility nightmares. Any suggestions?


More Info

I have several versions of Ubuntu 18.04 installed in Virtualbox. I have primarily been using Cinnamon desktop/nemo up to this point.

Mostly, I am extremely happy with this desktop. But GUI-based ownership changes (from root) are frustrating because a TON of entries are jammed into a drop-down that I can’t search and can’t use hotkeys from (e.g. to press “r” to jump to “root”, etc). Launching terminal is reliable but slow to type out names when I’m in a hurry.

Note: That this isn’t really an issue when running the file manager from non-root accounts as the owner is not editable and only a few groups are displayed.

I generally run into this I am trying to fix botched ownership perms on shared folders that the current user doesn’t own. And it’s generally never as quick and easy as running a single chown -R command.

I have encountered this same accessibility design in:

  • nemo v.3.6.5 (ubuntu 18.04/gnome+cinnnamon)
  • nemo v4.2.3 (in a popular sub-distro that I’m apparently no longer allowed to mention here)
  • nautilus v3.26.4 (ubuntu 18.04/gnome).

Criteria:

I am interested in finding a GUI-based solution that meets these criteria:

  • Works on some flavor of Ubuntu 18.04 / bionic (bc I prefer LTS editions)
  • Decent user accessibility for lists of 50-100 users/groups (e.g. at least attempts to deal with non-trivial list size such as by having hotkey support, search filters, option to hide service accounts, or something else)
  • No issues running under root (e.g. via pkexec or whatever). Only mentioning this because I’ve run across a handful of apps before that flat-out refuse to run under root.

At this point, I’m just hoping somebody knows of an option that I don’t… I don’t particularly care if this is a nemo-specific tweak, a system configuration, some obscure build option, a different file manager/desktop environment, some external app that wraps a gui around chown (as long as I can throw it in a nemo-action and pass it the path), etc. Mostly just looking to avoid the extra runaround of launching terminal and typing out longer names by hand when I’m in a hurry.

* Also, when I say I am “running as root” / “running with elevated privileges”, I mean the option that appears in the nemo/nautilus UI rather than me launching directly with sudo / pkexec / etc.


Steps to view dialog issue:

  1. Create a folder named “test” on desktop or wherever that is owned by non-root account
  2. In Nemo, right-click > “Open as root” > enter password. Or for nautilus, run pkexec env DISPLAY=$ DISPLAY XAUTHORITY=$ XAUTHORITY nautilus to open with admin privileges.
  3. With the admin instance, right-click on the “test” folder > Properties > Permissions tab
  4. Observe that ALL the service accounts and groups are displayed with no means to filter them / no checkbox to hide them. Observe that pressing “R” in the drop-down does NOT jump to or select “root” (or whatever the first account starting with “R” is). In my case there’s something like 50 users displayed (3 of which are non-service accounts) and something like 80 groups displayed (8 of which are not related to service accounts). For me, this is an accessibility nightmare and it makes searching things out almost as painful as needing to launch the terminal and type it out by hand.

What I’ve tried:

I’ll follow-up if I find discover anything that works but so far, I have tried the following:

  • Permit was almost exactly what I am looking for except that it appears to require typing out the names instead of picking from a list/drop-down/etc. Unfortunately, I have absolutely zero GTK skills at the moment (although I might revisit this when I have more time if nobody has better suggestions).
  • Ubuntu 18.04.2/gnome – Couldn’t figure out how to run as root initially but pkexec env DISPLAY=$ DISPLAY XAUTHORITY=$ XAUTHORITY nautilus eventually worked. Not surprisingly, this seems to have the same issue as nemo.
  • Ubuntu 18.04.2/cinnamon – after installing cinnamon and running nemo as mentioned above, this doesn’t do what I am looking for.
  • Kubuntu 18.04 – Couldn’t find a way to launch dolphin as root so not able to test. User/Group fields were grayed out for me when running as the default non-root account on livedisc.

I have not yet tested other file managers (planning to test thunar but not really familiar with what all is out there).


Screenshot

The non-searchable drop-down with lots of entries and no hotkey support that appears in (admin/root/pkexec) nemo and nautilus > properties > Permissions tab.

Non-searchable drop-down with lots of entries and no hotkey support