Why are corporate IT policies the way they are?
I thought about this the other day when asking my IT department why they won’t let me carry a USB stick between home and work to be able to work from home and instead lock down the USB access and instruct me to use Google Drive instead…
I decided that most corporations only cosplay their IT security inasmuch as it only matters up to and not beyond the point of economic convenience.
If any of these companies truly cared about security, they would at the very least be using a hardened fork of Chrome with Google Services stripped out. They’d be self-hosting their own servers connected only via a VPN or some sort.
But that shit takes money and staff to maintain it. So they’ll give everything to third parties to manage instead and then send out pop-quiz emails about phishing every couple of weeks followed by sternly worded emails when a person fails it.
(Sorry…off my anti-depressants until pay day, so I have a lot of micro rants that have built up…haha)
FreedomAdvocate@lemmy.net.au 19 hours ago
Microsoft and cos security is infinitely better than 99.99% of companies can manage self hosting their own stuff. They give guarantees too.
WhyJiffie@sh.itjust.works 15 hours ago
google drive because of microsoft? what?
and how is the security of google drive better than a pendrive?
WhyJiffie@sh.itjust.works 15 hours ago
google drive because of microsoft? what?
and how is the security of google drive better than a pendrive?
FreedomAdvocate@lemmy.net.au 14 hours ago
au.pcmag.com/…/dont-plug-it-in-how-to-prevent-a-u…
This is one of the many reasons you’re not in charge of IT security.
WhyJiffie@sh.itjust.works 12 hours ago
executable files can just as well downloaded from google drive. and if you didn’t disable autorun on the system that’s on you.