Re: I can attest to that! in http://www.dslreports.com/forum/r18090722 en Wed, 10 Feb 2010 10:19:03 EDT Wed, 10 Feb 2010 10:19:03 EDT Re: I can attest to that! http://www.dslreports.com/forum/remark,18091182 Oleg :
said by toadlife See Profile :

With physical access, right?
Yes.]]> http://www.dslreports.com/forum/remark,18091182 Fri, 30 Mar 2007 19:07:40 EDT Re: I can attest to that! http://www.dslreports.com/forum/remark,18090722 toadlife : With physical access, right?]]> http://www.dslreports.com/forum/remark,18090722 Fri, 30 Mar 2007 17:36:05 EDT Re: I can attest to that! http://www.dslreports.com/forum/remark,18090154 openbox9 : I made the comment below that until corporations experience financial implications, network/computer security simply aren't a concern. HIPAA provides that financial implication and therefor you will have positive response from the top.]]> http://www.dslreports.com/forum/remark,18090154 Fri, 30 Mar 2007 15:49:40 EDT Re: I can attest to that! http://www.dslreports.com/forum/remark,18089635 Oleg :
said by fatmanskinny See Profile :

I worked in a huge company where machines were compromised at least once a month.

I think giving all end users admin rights on their machines is not a good idea. My new company does not allow admin rights for end users. It creates additional work for IS but the payoff is that you assist the end user in not being a danger to themselves or anyone else.
What about crackers?
It takes me less than 5min. to get Admin rights on any Windows based PC.]]> http://www.dslreports.com/forum/remark,18089635 Fri, 30 Mar 2007 14:07:37 EDT Re: I can attest to that! http://www.dslreports.com/forum/remark,18089446 N10Cities :
said by openbox9 See Profile :

Riiiight. That's a great policy if you have top-down support. In my experience, the top are often the first ones to violate (or direct violation of) policy.
If that is the case, then they get what they deserve.... the bad thing about that is, they come down on your head for their ignorance..... :huh:

In our line of work (elder healthcare), even upper management HAS to toe the line as far as IT policies, if HIPAA compliance is to be met. Too much at stake!!]]> http://www.dslreports.com/forum/remark,18089446 Fri, 30 Mar 2007 13:39:14 EDT Re: I can attest to that! http://www.dslreports.com/forum/remark,18089155 openbox9 : It's great that you have support from the top. That hasn't been my experience. Granted, I do think the situation is changing, just not as fast as us geeky types would like.]]> http://www.dslreports.com/forum/remark,18089155 Fri, 30 Mar 2007 12:43:26 EDT Re: I can attest to that! http://www.dslreports.com/forum/remark,18089099 fatmanskinny :
said by openbox9 See Profile :

Riiiight. That's a great policy if you have top-down support. In my experience, the top are often the first ones to violate (or direct violation of) policy.
In my new company, not even the CEO has admin rights. Lol! It is a top-down policy. Some people have it (very, very, very (did I say very?) few).

For the most part, the ones who are dangers to themselves don't have it. Also, Corp IS has two separate accounts:

One User account
One Account Operator or another type of Admin account.

We work using mostly Citrix or Remote Desktop connections to ticketing system, remote control tools, etc. That way, we can still work on issues and log tickets but still locally logged in using a User account.

--
The only place where Success comes before Work is in the dictionary. ]]> http://www.dslreports.com/forum/remark,18089099 Fri, 30 Mar 2007 12:32:02 EDT Re: I can attest to that! http://www.dslreports.com/forum/remark,18088923 openbox9 : Riiiight. That's a great policy if you have top-down support. In my experience, the top are often the first ones to violate (or direct violation of) policy.]]> http://www.dslreports.com/forum/remark,18088923 Fri, 30 Mar 2007 12:02:19 EDT Re: I can attest to that! http://www.dslreports.com/forum/remark,18088738 N10Cities : Here is one possible solution......all users running Citrix desktop sessions, locked down, no admin rights..... user doesn't like it, tough.... company policy...]]> http://www.dslreports.com/forum/remark,18088738 Fri, 30 Mar 2007 11:31:54 EDT I can attest to that! http://www.dslreports.com/forum/remark,18088141 fatmanskinny : I worked in a huge company where machines were compromised at least once a month.

I think giving all end users admin rights on their machines is not a good idea. My new company does not allow admin rights for end users. It creates additional work for IS but the payoff is that you assist the end user in not being a danger to themselves or anyone else.
--
The only place where Success comes before Work is in the dictionary. ]]> http://www.dslreports.com/forum/remark,18088141 Fri, 30 Mar 2007 09:33:22 EDT