Posted on 09/27/2020 12:23:02 AM PDT by nickcarraway
I have never found anything serious enough to rat anyone out, that is for sure.
I did once have to call someone and warn them that their unauthorized activities on work equipment were being monitored, and for their own good, they should stop.
The person somehow thought that logging onto another PC with their own credentials would in some way, anonymize them.
How could this possibly go wrong, heheh. Let me count the ways...oh wait, the experience was too painful. I have written automatic end-of-hire workflow management, and every single system managed to demonstrate some inadequacy of the automated approach eventually. Typically because of the difficulty in unwinding things we would carefully audit the request and ensure controls and then annoyed HR minions would push back unmercifully for sole discretion. In one hilarious case an HR minion accidentally ran EOH on herself and her boss after her boss successfully lobbied for minimized controls...it was as if they became non-persons! One of the controls bypassed prevented a scenario where the system was locked when critical authorizers were disabled, and of course those two had made themselves the critical authorizers and deleted everyone else, heheh. I had already left the company but they called me up for help fixing it...
In another case senior management hired an outside contractor to install a separate system ensuring certain access for board members but didn't consider what would happen if a board member was an employee who left the company after being added to the board. Actually the contractor used an unapproved shortcut (undocumented Active Directory enumeration) and automated cleanup found all of the board members and locked them and the outside auditors out in a way that ensured we would have to recreate all the access from scratch to fix it).
This makes no sense at all from a technical sense! Is someone has another's credentials, this is a HUGE security violation!
Mark
Is Shannon Stafford a guy or a women or something in between?
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.