• AnonymousLlama@kbin.social
    64·
    1 year ago

    Need the opposite costume, the overly eager sys admin.

    • wants to force password changes once a month for security
    • constantly changing security policies to reflect the flavor of the month
    • constantly sends out phishing emails tests, wonders why no one replies to any of his emails
    • idunnololz@lemmy.world
      15·
      1 year ago

      A website once complained my password contained 3 consecutive letters there were 1 away from each other. This was back when I used sentences for passwords. It was complaining about the word worst because of r-s-t.

    • Hotdog Salesman@programming.dev
      15·
      1 year ago

      My fucking uni is trying to move to passwordless, but you will always need a password to log onto any lab device, and to the wifi, so why?

    • Pyrux@programming.dev
      6·
      1 year ago

      Then they have you make it some 12 character length minimum string with mixed case and special characters and dictionary lookup so it isn’t some common phrase but you’re also logging in through a telnet instance onto a Unix system.

    • magic_lobster_party@kbin.social
      3·
      1 year ago

      Sysadmin: “A clear indication of phishing email is the sense of urgency. We would never send out any email regarding urgent updates that needs immediate action.”

      Also sysadmin: “URGENT!!! You must update your system now before Friday!!! Click link here for instructions! Otherwise you will be locked out!”

      • AnonymousLlama@kbin.social
        2·
        1 year ago

        Spot on. We’re changing XYZ policy and we need everyone to do this training within the week. Wait, why’s no one opening my emails

  • HairHeel@programming.devEnglish
    471·
    1 year ago
    • Installs antivirus on servers that wrecks application performance
    • installs content filtering proxy that prevents developers from reading “hacking materials” like OWASP documentation
    • won’t let developers install anything on their own machines without filing a ticket and waiting 6 weeks
    • pushes unannounced antivirus updates that pop up OS security dialogs like “Netscan Antivirus would like to monitor all network traffic. Enter your password to approve”, and is surprised when users don’t enter their passwords.

    Your corporate IT guy

    • kd45@lemm.eeEnglish
      9·
      1 year ago

      We might work at the same company lmao. My laptop is borderline unusable due to all the monitoring garbage despite having really fast hardware

  • geekworking@lemmy.worldEnglish
    29·
    1 year ago

    Even worse is the CEO.

    He needs access to everything and he’s far too important to waste time with security.

    • Noughmad@programming.devEnglish
      8·
      1 year ago

      This is the reason why those scams are so successful:

      “Hi this is the CEO, wire $10000 to this account right now, we need it there yesterday. I don’t have time to talk, just do it. Bye”

  • DragonAce@lemmy.worldEnglish
    17·
    1 year ago

    I used to have a lady I worked with who was like this. She had the common sense of a fucking carrot and was dumb as shit. What was weird is she was highly skilled in the one job she was hired for, the rest of the time she would click on everything and I would had to fix her computer multiple times a week. One time I tried to walk her thru something on the phone and I told her to click on an icon, her response was “Whats an icon?”

  • Dubious_Fart@lemmy.mlEnglish
    15·
    1 year ago

    I bet he also picks up USB sticks from the parking lot and plugs them into his work computer.

  • nfntordr@lemmy.worldEnglish
    10·
    1 year ago

    The cybersecurity email tests I get at work are so transparent - Hi user, You have an unpaid invoice, please follow link to pay immediately.

    I wish I could I could reply no I don’t fuck off but I’d probably get in trouble lol

    • magic_lobster_party@kbin.social
      10·
      1 year ago

      At my work the company wanted to show some gratitude and sent out email with free ice cream vouchers to everybody. Many suspected this was just another one of these cybersecurity email tests, so the company had to clarify it’s all real.

      I think it’s hilarious the thought about hackers using ice cream as bait. Maybe that would work?

  • kkard2@lemmy.mlEnglish
    7·
    1 year ago

    wait untill you hear “if i remember correctly my email password was {name} {surname} something @ gmail.com… what do you mean that’s not it? why do i even need a password?”…

    • yeather@lemmy.caEnglish
      3·
      1 year ago

      Fuck my email is (first name)(last initial)(birthday and month)@gmail.com

  • zerkrazus@kbin.social
    4·
    1 year ago

    Searches for things online by typing it as a post on social media instead of using a search engine as in: “Google what is the weather like today near me?”