|
Avenging_Mikon posted:We actually have a 15 or 30 minute lock out, but people still manage to forget their password all the time, despite them typing it 3-4 times a day, 5 days a week. We can't even put in a global monitor sleep policy. I did a paper on showing how much money we'd save just putting computers to sleep and shutting monitors down and the savings was considerable for our main office, nearing 10k, but nope, can't do that because one executive one time in 1996 had a hard time getting his laptop to come back from sleep state.
|
# ? Aug 1, 2017 17:29 |
|
|
# ? Jun 6, 2024 14:27 |
|
My go to prank for unlocked computers was to take a screenshot of their icon layout, set it as the background, then hide all the icons. I say was because I work in a professional environment now and poo poo like that just doesn't happen. $oldJob was considerably less professional, and poo poo like that happened all the time. The owner of the company would regularly super glue mice to the workbench. This was such a regular thing, that a couple of us kept spare mice on hand so that we could just plug it in instead of having to clean up the glued one.
|
# ? Aug 1, 2017 17:33 |
|
Look I'm sorry but if you don't lock your PC you are just asking me to take a dump on your desk. How else will you learn?
|
# ? Aug 1, 2017 17:40 |
|
Sounds like someone needs a SATA cable disconnected...
|
# ? Aug 1, 2017 17:42 |
|
Jeoh posted:The latest Reddit IT meme is blaming everything on DNS. Apparently name resolution is an arcane process ruining everything.
|
# ? Aug 1, 2017 17:46 |
|
Everyone posted:Stupid loving poo poo about unlocked PCs
|
# ? Aug 1, 2017 17:47 |
|
I am thinking about putting together a policy that will let my team out of write ups if they buy me lunch. What you guys think? How else are they going to learn? RE: A ticket came in: How else are they going to learn?
|
# ? Aug 1, 2017 17:47 |
|
About 3 years ago, the previous version of our training/LMS platform didn't have single sign on. Nurse A didn't log out of his session, Nurse B hopped on the computer before the timed logout, and completed a big stack of web-based training without checking to see who was logged in. We told Nurse B that policy prevented us from granting her those credits in her own account, and she'd have to retake them. [Seriously, can you imagine the 2000 tickets saying "Uh, I really did my training, it must've just been in someone else's account! Run an audit!"] Nurse B raised a huge fuss and demanded a response at C-level. I went to the meeting to represent our department. I asked, "Would we be having this conversation if Nurse B had typed medication dosage information into the wrong patient's chart because she wouldn't check to see who was logged into a console?" It was a quick meeting.
|
# ? Aug 1, 2017 17:52 |
|
Judge Schnoopy posted:Hey good post and all but you're still being terribly obtuse. Ah yes, "vandalizing". Let's add scare words in there instead of holding people accountable for their laziness. Because changing a background image and adding a boot tone to a sysadmins machine is totally the same as spray painting a house or filling a car with shaving cream. Stop hyperventilating for five loving seconds and actually read. My poo poo isn't stored in my neighbors garage. I don't keep my W-2 or my banking info there. I don't keep my street address, my wife's info, my banking info at my neighbors. If my neighbor gets broken into, I'll hear his sob story and offer some sympathy, but point out his personal security is bad and offer some things to change. I don't care if Coca cola or GE has poo poo practices, I don't work there, their negligence doesn't cost me. I do work here. My PII is on site both as an employee and as a customer. My wife's PII is here. So security negligence here will cost me. Personally. We can agree to disagree on the subject, but I hold that the inconvenience and temporary embarrassment of a different desktop is vastly preferable to being stung by a pen test if you're lucky, or being known as "that guy that precipitated a massive IT breach" for the rest of your life. (USER WAS PUT ON PROBATION FOR THIS POST)
|
# ? Aug 1, 2017 17:56 |
|
Raerlynn posted:Ah yes, "vandalizing". Let's add scare words in there instead of holding people accountable for their laziness. Because changing a background image and adding a boot tone to a sysadmins machine is totally the same as spray painting a house or filling a car with shaving cream. Stop hyperventilating for five loving seconds and actually read. "This is a very serious issue with serious consequences" "The plan is to fix it by pranks" You are a loving idiot.
|
# ? Aug 1, 2017 17:58 |
|
If I see someone's desktop unlocked, I open notepad and tell them to lock it next time. Then I lock it
|
# ? Aug 1, 2017 18:08 |
|
Gotta say I'd rather have somebody spraypaint my garage than have to explain to family and friends why my facebook status says I'm a pedophile (which was a serious thing somebody posted above). Nobody said terminal security is stupid. I'm not saying it's not serious. There are professional, adult ways to teach people how dangerous it is, like proper training or a white hat analysis showing what somebody could walk out the door with. Professional environments seek to lift employees up to better working standards. I sincerely hope you can understand why pulling pranks on your coworkers (as a teaching method) is counterproductive to a successful environment, and if not, I hope I never work at the same place you do.
|
# ? Aug 1, 2017 18:10 |
|
I do the opposite! If a machine is locked I unlock it using the admin account and shut it down.* *When doing upgrades which require machines to be off the SAN and I have the okay from the client.
|
# ? Aug 1, 2017 18:16 |
|
This derail about locking computers is a lovely boring derail. Larches, any TV station news?
|
# ? Aug 1, 2017 18:23 |
|
Jeoh posted:If I see someone's desktop unlocked, I open notepad and tell them to lock it next time. Then I lock it So you are telling us you don't go and replace the SATA cables with bad ones, then laugh while they don't understand? But seriously, demanding someone to bring doughnuts or cake in because they forgot to lock their computer, or else they will be reprimanded. Isn't that technically corruption?
|
# ? Aug 1, 2017 18:30 |
|
Dunno-Lars posted:So you are telling us you don't go and replace the SATA cables with bad ones, then laugh while they don't understand? You are looking for unethical. And yes it is.
|
# ? Aug 1, 2017 18:32 |
|
Judge Schnoopy posted:At my job, if you leave your computer unlocked, people don't loving touch it. They keep me chained to my desk so I don't have an opportunity to see if anyones computer is locked or not. I just dump .gif files in people's startup folder. Locked or otherwise.
|
# ? Aug 1, 2017 18:37 |
|
Person A files a time-sensitive ticket for Person B in Person B's name. I call Person B for details. Person B has no idea what the problem is or relates to and cannot replicate it but they're fairly sure it exists. I email/call Person A asking what in the world is going on and they respond 24 hours later telling me to call Person B because they know what the problem is. Person B is unavailable for the next 6 hours so I'm going to be calling them at close of business today so I can be told they still don't know what is going on for an issue that absolutely positively had to be fixed like 30 hours ago.
|
# ? Aug 1, 2017 18:38 |
|
Something that always gets missed when this conversation comes up is that some people feel that you should never, under any circumstances, have fun at the workplace in harmless ways.
|
# ? Aug 1, 2017 18:39 |
|
So a phone call came in. One of our clients had a printer fail and needed someone to come out and fix it. The contractor here had been working on the issue for an hour but hadn't contacted the client letting them know. So I went on site to look into the issue. The way the clients reception desk is setup is stupid. They have a brother MFP that is broken in some way that prevents it from detecting a connection when plugged into a fortigate. The front also has a consumer cisco router setup to act as wifi from the site. So someone at some point ran a cable from the printer to the cisco router, it worked and called it a day. All of this is hidden under the reception desk. This was also setup well before I started with the company. Fast forward to today. I get on site, and the network cable on the cisco side is partially unplugged. So I reseat the cable, and printer comes online. The clip isn't broken so I don't do anything with the cable. When i got it fixed, the owner asked what was wrong and I told him. He gives me this look and says this isn't a proper solution, its a bandaid and when the owner comes back he wants to talk about a proper solution. To be honest, I agree with him but I don't say anything and let him know ill talk to my boss to contact him. I message the contractor, let him know its fixed and figure thats the end of it. He starts drilling me about what happened. I tell him what was wrong, and what the owner said. Then he goes off on me about how I represented the solution poorly and made it look like we cheated him. He then calls me up and goes off on me over the phone. I wonder if the bandaid was his idea... blackswordca fucked around with this message at 18:42 on Aug 1, 2017 |
# ? Aug 1, 2017 18:40 |
|
Dunno-Lars posted:But seriously, demanding someone to bring doughnuts or cake in because they forgot to lock their computer, or else they will be reprimanded. Isn't that technically corruption? I regret that I contributed this much to a derail by not posting enough details. IF IT IS NOT IN THE TICKET, IT NEVER HAPPENED
|
# ? Aug 1, 2017 18:45 |
|
AAAAA! Real Muenster posted:no one has actually done it in like 6 months because its more of an idle consequence for being caught multiple times. I buy my coworkers doughnuts more often than this for no reason other than because If you're lucky they'll forget that you took a formatted e-mail that said "see highlighted segments" and copy/pasted it into a ticket that only accepts unformatted text no I haven't done this recently why do you ask
|
# ? Aug 1, 2017 18:54 |
|
AAAAA! Real Muenster posted:In reference to my post about the donuts there is no demand and no reprimand so I dont understand what everyone is in an uproar about. Its not like its enforced or anything - no one has actually done it in like 6 months because its more of an idle consequence for being caught multiple times.
|
# ? Aug 1, 2017 18:55 |
|
Kazinsal posted:Everyone knows the real way to make sure your stuff is secure is to build up such an image of evil and hatred that you alienate all of the people in your company and no one wants to come within ten feet of you or your desk. That's the part people seem to be missing out on. In some IT orgs, the admins are friends and have all bought in on the joke. They willingly play along because it's fun. Not because they think they're actually going to be fired if they don't bring donuts in.
|
# ? Aug 1, 2017 19:11 |
|
Renegret posted:I buy my coworkers doughnuts more often than this for no reason other than because Like....exactly the same.
|
# ? Aug 1, 2017 19:23 |
|
uPen posted:Person A files a time-sensitive ticket for Person B in Person B's name. I call Person B for details. Person B has no idea what the problem is or relates to and cannot replicate it but they're fairly sure it exists. I email/call Person A asking what in the world is going on and they respond 24 hours later telling me to call Person B because they know what the problem is. Person B is unavailable for the next 6 hours so I'm going to be calling them at close of business today so I can be told they still don't know what is going on for an issue that absolutely positively had to be fixed like 30 hours ago. Why could you not just tell person A that you already talked to person B?
|
# ? Aug 1, 2017 20:31 |
|
Dick Trauma posted:Sounds like someone needs a SATA cable disconnected... Really the proper thing is to replace the SATA cables with bad cables, like that one goon did e: beaten by like two hours
|
# ? Aug 1, 2017 20:39 |
|
Dick Trauma posted:Sounds like someone needs a SATA cable disconnected... Or some kind of remote/delayed etherkiller
|
# ? Aug 1, 2017 21:47 |
|
mattfl posted:200+ tickets have come in. I heard AT&T was to blame for this mess.
|
# ? Aug 1, 2017 22:43 |
|
Zil posted:Or some kind of remote/delayed etherkiller A sort of... Timed Etherblast
|
# ? Aug 1, 2017 22:53 |
|
vosk posted:I heard AT&T was to blame for this mess. AT&T can be blamed for everything
|
# ? Aug 1, 2017 23:18 |
|
Probably not the right thread for this.
Oswald Kesselpot fucked around with this message at 01:06 on Aug 2, 2017 |
# ? Aug 1, 2017 23:47 |
|
uPen posted:Person A files a time-sensitive ticket for Person B in Person B's name. I call Person B for details. Person B has no idea what the problem is or relates to and cannot replicate it but they're fairly sure it exists. I email/call Person A asking what in the world is going on and they respond 24 hours later telling me to call Person B because they know what the problem is. Person B is unavailable for the next 6 hours so I'm going to be calling them at close of business today so I can be told they still don't know what is going on for an issue that absolutely positively had to be fixed like 30 hours ago. Resolved: Person B says there's no issue. Ticket Filed: Permissions locked down so people can't file tickets for other people. if only RFC2324 posted:Something that always gets missed when this conversation comes up is that some people feel that you should never, under any circumstances, have fun at the workplace in harmless ways. It's almost like different companies have different cultures and handle things differently The last time we had a spearphishing test people were frothing about enforced training as a result, but "changing your slack status (previously irc name) to have a dunce cap when you gently caress up in production" has been a culture thing for years. People ask you what you did, you tell them, you both reminisce about previous fuckups. Completely opt-in and unenforced, and would work at pretty much no other company I've worked at
|
# ? Aug 2, 2017 01:18 |
|
When my co-workers leave their computers unlocked, I like to play a fun little game to correct the problem. There's a cool shortcut that most people don't know about. You hold down the Windows key, then press 'L' Punked!
|
# ? Aug 2, 2017 02:03 |
|
We get it, some of you hate fun, some of you want to educate people so they'll lock their poo poo their drat self Can we move on now
|
# ? Aug 2, 2017 02:13 |
|
Malachite_Dragon posted:We get it, some of you hate fun, some of you want to educate people so they'll lock their poo poo their drat self
|
# ? Aug 2, 2017 02:20 |
|
JESUS CHRIST YOU MURDERED HIM
|
# ? Aug 2, 2017 03:17 |
|
Fil5000 posted:Sound the larchesdanrew klaxon. Hasn't quite been 12 hours yet, so I'm calling this response acceptable: https://www.youtube.com/watch?v=rKWrLFWesDQ
|
# ? Aug 2, 2017 03:37 |
|
Raerlynn posted:Your options are this or eat a write up for your lax personal security. Bonus points involved the desktop and boot up sound getting changed to something suitably attention grabbing. One of my buddies had this happen to him during college. Turns out when your CS/EE friends all tell you "dude, just start securing your stuff, get in the habit it's a good idea. In short: put a loving password on your laptop." it's a good idea to to listen to them lest they get prankish. He left his laptop unsecured around them one day and comes back to find that every single system noise, repeat: every noise was replaced with the entire sound file for "Charlie the Unicorn: Episode one." System boots up: Four minutes of "Were off to Candy Mountain, Charlie!" System shuts down: "Chaaaarlie! Chaaaarlie!" Mis-click and Windows dings at you saying it can't do that? "Look Charlie! It's Candy Mountain!". Yes it would play the entire thing, and if multiple system sounds went off before the first finished it would queue up the entire sound file again. The real kicker was one day he was in the front of class when his battery started to die. He enjoys the class, enjoys the professor, but the professor is the type that if any electronic disturbance happens (usually a cell phone going off) he would stop class until the disturbance ends (student silences phone or takes the call in the hallway). So my buddy is in the front of the class when his laptop goes "Out of power, shutting down now to save your data." Normally that would get just get the cheerful Windows "Ding-ding-ding-dong!", but on his computer... "Charlie!" Queue my friend stuffing his laptop on his bag, and then sitting on said bag in a desperate attempt to muffle his laptop while the professor stopped class to stare quietly at him for the entire four minutes of the cartoon playing from his computer. Between that, and not realizing we were joking when we told him to "delete system32" to speed up his computer, he took it upon himself to actually learn and has become far, far, far better at computers (enough he's an IT guy himself now). He's also paranoid about physical access to his machine, and quoting Charlie the Unicorn around him makes his blood pressure spike hard enough that it can probably pull him out of a coma.
|
# ? Aug 2, 2017 06:00 |
|
|
# ? Jun 6, 2024 14:27 |
|
Judge Schnoopy posted:Hey good post and all but you're still being terribly obtuse. At the same time, you can't guarantee someone else won't get a bad idea, so it's just good practice to keep things secure. Just because you wouldn't do something malicious doesn't mean someone else won't, and a LOT can go wrong and screw everyone over. I usually just lock a PC I see open regardless of who's using it, because honestly it's stupid not to, and some of the people I used to work with were massive idiots about it and other security - case in point, my last job had an unannounced phishing/scam email test go out to everyone. I checked it, confirmed it was fake, and deleted it - but at the same time, 9 other people opened the drat thing and got a fake encryption virus message from it. Sad part was 3 people were on our support desk, the rest were either supervisors or sales/account management, and all of them had been briefed multiple times in the past on security measures and not opening mail you're unsure about.
|
# ? Aug 2, 2017 06:55 |