Dear Users… (A thread for Sysadmin, Technical Support, and Help Desk people) Part 10

Status
Not open for further replies.
JoeMorgue said:
I'd wish we would jump straight "stop printing."

It's 2022. Are you on a device connected to the internet? Is the person who needs this information able to access a device connected to the internet? Then why paper into it?

Again I know me being in the medical field is a huge part of this but I will never understand the utter fetish my userbase has for taking something that is created digitally like pretty much everything within a rounding error these days, printing it out to work on it, and then scanning it back in.
Click to expand...
Lawyers too.
 
Wudang said:
Does the "do not switch" option from the link below apply?

https://learn.microsoft.com/en-us/a...ndling-multiple-profilesm365-accounts-ba.html

Some 10 years back the bank I worked for identified a need for something like this and wrote their own.
Click to expand...
Possibly, but right now it's working okay and I don't want to mess with it too much.

Norman Alexander said:
Any of this help?

https://windowsreport.com/restore-previous-session-microsoft-edge/
Click to expand...
No, it's just that the function to save sessions is locked down. They overlooked pinned tabs for some reason.

TragicMonkey said:
And we have to use Microsoft (sigh) "Authenticator" now on our phones instead of DUO.
Click to expand...
I have to use both. Logging on to the PC and a couple of other systems requires DUO, and some of our admin functions require MS Authenticator (some of them get press-the-button authentication, others require the passcode). It's pretty annoying. I wish we could just do everything in DUO.
 
TragicMonkey said:
What's the point of that?! It's combining insecurity with inconvenience.
Click to expand...

Real talk? Because security theater in the IT world is approaching anti-vax and TSA levels of logic, focusing on hyper rare threats at the expense of combating day to day ones and putting on a big show of it at that.

Yes seemingly everyone in IT security is focused on the clip art hacker in the ski mask, balancing his laptop on one knee while he expertly subnets the DNS until the token ring falls out and gets stuck in the ethernet and he can dramatically whisper "I'm in" but that's not the biggest threat.
 
JoeMorgue said:
Real talk? Because security theater in the IT world is approaching anti-vax and TSA levels of logic, focusing on hyper rare threats at the expense of combating day to day ones and putting on a big show of it at that.

Yes seemingly everyone in IT security is focused on the clip art hacker in the ski mask, balancing his laptop on one knee while he expertly subnets the DNS until the token ring falls out and gets stuck in the ethernet and he can dramatically whisper "I'm in" but that's not the biggest threat.
Click to expand...

Yeah - the big IT companies need to get together and start a class action against 3M Post-It notes!
 
Darat said:
Yeah - the big IT companies need to get together and start a class action against 3M Post-It notes!
Click to expand...

Yep, some years back I was part of a security audit of the IBM plant at Greenock. 2 desks from the head of security a guy had an underdesk drawer thing with a pullout shelf. Complete with all his ids and passwords. His future did not look rosy.
 
JoeMorgue said:
Real talk? Because security theater in the IT world is approaching anti-vax and TSA levels of logic, focusing on hyper rare threats at the expense of combating day to day ones and putting on a big show of it at that.

Yes seemingly everyone in IT security is focused on the clip art hacker in the ski mask, balancing his laptop on one knee while he expertly subnets the DNS until the token ring falls out and gets stuck in the ethernet and he can dramatically whisper "I'm in" but that's not the biggest threat.
Click to expand...

At my work our IT security sends out fake phishing emails to see if the employees report them properly or fall for them. A surprising number of people "click here for celebrity candid pics!" and stuff. What bugs me is that a) the filters are already so good that these fakes are actually the only junk/phishing emails that we ever see and b) they're bad fake emails -- the spelling is all correct, the formatting too good.
 
Wudang said:
Yep, some years back I was part of a security audit of the IBM plant at Greenock. 2 desks from the head of security a guy had an underdesk drawer thing with a pullout shelf. Complete with all his ids and passwords. His future did not look rosy.
Click to expand...

If we fired all my users who did that the only people still employed would be the IT Staff and the Cleaning Crew.

"Remembering passwords without writing them down" is yet another thing that's its just soooooooooooo unreasonable to expect our "Widdle ole' ladies who just aren't good with computers" to do.
 
JoeMorgue said:
If we fired all my users who did that the only people still employed would be the IT Staff and the Cleaning Crew.
Click to expand...

I've probably mentioned it before, but the IT staff at my main employment would routinely request our passwords if our PCs needed work, despite it (unsurprisingly) being explicitly against security guidelines.
 
zooterkin said:
I've probably mentioned it before, but the IT staff at my main employment would routinely request our passwords if our PCs needed work, despite it (unsurprisingly) being explicitly against security guidelines.
Click to expand...

I've had to all but literally fight users trying to give me their passwords against my will.

It's not gotten to the point that I've had to run away, with my fingers in my ears going "LA LA LA I CAN'T HEAR YOU LA LA LA" as loud as I can but it's got close.

And yes completely off the books cases of us just having to work afterhours in a user's account (with their permission) by just asking for their passwords has occurred, although such a thing is at best frowned upon.
 
We were informed that our outsourcers who moved to a super-efficient global hub last year have a national public holiday on Monday and Tuesday next week, so screw your support and any changes you wanted. The tail continues to wag the dog.
 
JoeMorgue said:
If we fired all my users who did that the only people still employed would be the IT Staff and the Cleaning Crew.

"Remembering passwords without writing them down" is yet another thing that's its just soooooooooooo unreasonable to expect our "Widdle ole' ladies who just aren't good with computers" to do.
Click to expand...

Well, within reason. Memorizing your work login to Windows is one thing. But memorizing all your passwords? Bearing in mind some are compulsorily changed every 3 months? I have a spreadsheet (password protected, of course) where I keep all my passwords (in code, of course). Currently I have 47 that I use in my ordinary life. I am a brilliant-brained monkey, of course, but even I would have difficulty memorizing 47 passwords.
 
Listen I'm not completely heartless. I use a password manager (Bitwarden) in both my professional AND private life.

We've tried to introduce password managers and it hasn't gone well.
 
JoeMorgue said:
Listen I'm not completely heartless. I use a password manager (Bitwarden) in both my professional AND private life.

We've tried to introduce password managers and it hasn't gone well.
Click to expand...

I recently thought to have a look at how our IT people manage passwords to powerful accounts. Let me write the words password management tool, unprotected, and network share, and see how you react.
 
Well, we use a password management tool for elevated accounts, but it's an actual one, luckily. The passwords get chang3ed daily in most cases, and have to be checked out of the system. And we're big into federation and SSO, so not too many passwords a user has to remember. Working IAM this is kinda my baliwick.
 
I've mentioned this before, but password managers are explicitly and deliberately prohibited and blocked in my environment. I have absolutely no idea why. It makes no sense at all.
 
Status
Not open for further replies.

Back
Top Bottom